Lucene search
OracleLinuxELSA-2019-2205HistoryAug 13, 2019 - 12:00 a.m.
tomcat security, bug fix, and enhancement update
2019-08-1300:00:00
linux.oracle.com
29
0.791 High
EPSS
Percentile
98.3%
[0:7.0.76-9]
- Resolves: rhbz#1641873 CVE-2018-11784 tomcat: Open redirect in default servlet
- Resolves: rhbz#1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended expo
sure of resources - Resolves: rhbz#1552374 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised us
ers - Resolves: rhbz#1590182 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable ‘supportsCredentials’ for all origins
- Resolves: rhbz#1608609 CVE-2018-8034 tomcat: host name verification missing in WebSocket client
- Resolves: rhbz#1588703 Backport of Negative maxCookieCount value causes exception for Tomcat
- Resolves: rhbz#1472950 shutdown_wait option is not working for Tomcat
- Resolves: rhbz#1455483 Add support for characters < and > to the possible whitelist values
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | tomcat | < 7.0.76-9.el7 | tomcat-7.0.76-9.el7.src.rpm |
| oracle linux | 7 | noarch | tomcat | < 7.0.76-9.el7 | tomcat-7.0.76-9.el7.noarch.rpm |
| oracle linux | 7 | noarch | tomcat-admin-webapps | < 7.0.76-9.el7 | tomcat-admin-webapps-7.0.76-9.el7.noarch.rpm |
| oracle linux | 7 | noarch | tomcat-docs-webapp | < 7.0.76-9.el7 | tomcat-docs-webapp-7.0.76-9.el7.noarch.rpm |
| oracle linux | 7 | noarch | tomcat-el-2.2-api | < 7.0.76-9.el7 | tomcat-el-2.2-api-7.0.76-9.el7.noarch.rpm |
| oracle linux | 7 | noarch | tomcat-javadoc | < 7.0.76-9.el7 | tomcat-javadoc-7.0.76-9.el7.noarch.rpm |
| oracle linux | 7 | noarch | tomcat-jsp-2.2-api | < 7.0.76-9.el7 | tomcat-jsp-2.2-api-7.0.76-9.el7.noarch.rpm |
| oracle linux | 7 | noarch | tomcat-jsvc | < 7.0.76-9.el7 | tomcat-jsvc-7.0.76-9.el7.noarch.rpm |
| oracle linux | 7 | noarch | tomcat-lib | < 7.0.76-9.el7 | tomcat-lib-7.0.76-9.el7.noarch.rpm |
| oracle linux | 7 | noarch | tomcat-servlet-3.0-api | < 7.0.76-9.el7 | tomcat-servlet-3.0-api-7.0.76-9.el7.noarch.rpm |
Related
nessus
nessus
Oracle Linux 7 : tomcat (ELSA-2019-2205)
2023-09-07 00:00:00
RHEL 7 : tomcat (RHSA-2019:2205)
2019-08-12 00:00:00
CentOS 7 : tomcat (CESA-2019:2205)
2019-08-30 00:00:00
redhat
redhat
centos
centos
tomcat security update
2019-08-30 04:27:31
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:3261-1)
2021-04-19 00:00:00
Huawei EulerOS: Security Advisory for tomcat (EulerOS-SA-2019-2675)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for tomcat (EulerOS-SA-2019-1992)
2020-01-23 00:00:00
amazon
amazon
Important: tomcat
2020-03-09 19:23:00
Medium: tomcat7, tomcat8
2018-03-21 22:06:00
Important: tomcat7, tomcat80
2018-08-09 16:10:00
rocky
rocky
pki-deps:10.6 security update
2019-06-18 16:36:21
almalinux
almalinux
Important: pki-deps:10.6 security update
2019-06-18 16:36:21
osv
osv
Important: pki-deps:10.6 security update
2019-06-18 16:36:21
Important: pki-deps:10.6 security update
2019-06-18 16:36:21
tomcat7 - security update
2018-06-27 00:00:00
oraclelinux
oraclelinux
pki-deps:10.6 security update
2019-07-30 00:00:00
tomcat security update
2019-03-13 00:00:00
mageia
mageia
Updated tomcat packages fix security vulnerabilities
2018-12-10 00:20:39
Updated tomcat packages fix security vulnerabilities
2018-02-28 16:55:21
tomcat
tomcat
Fixed in Apache Tomcat 8.0.53
2018-07-06 00:00:00
Fixed in Apache Tomcat 9.0.5
2018-02-11 00:00:00
Fixed in Apache Tomcat 7.0.85
2018-02-13 00:00:00
ibm
ibm
fedora
fedora
[SECURITY] Fedora 28 Update: tomcat-8.5.35-1.fc28
2019-04-03 02:02:31
[SECURITY] Fedora 26 Update: tomcat-8.0.50-1.fc26
2018-04-04 16:47:53
[SECURITY] Fedora 27 Update: tomcat-8.0.50-1.fc27
2018-04-04 17:10:49
debian
debian
[SECURITY] [DLA 1450-1] tomcat8 security update
2018-07-29 11:57:59
[SECURITY] [DLA 1301-1] tomcat7 security update
2018-03-06 13:24:42
[SECURITY] [DSA 4281-1] tomcat8 security update
2018-08-29 06:29:28
freebsd
freebsd
tomcat -- Security constraints ignored or applied too late
2018-02-23 00:00:00
kaspersky
kaspersky
KLA11203 Multiple vulnerabilities in Apache Tomcat
2018-02-13 00:00:00
KLA11256 SB vulnerability in Apache Tomcat
2018-05-15 00:00:00
KLA11327 SB vulnerability in Apache Tomcat
2018-10-03 00:00:00
ubuntu
ubuntu
Tomcat vulnerabilities
2018-05-30 00:00:00
Tomcat vulnerability
2018-10-10 00:00:00
suse
suse
Security update for tomcat (moderate)
2018-09-17 12:12:40
Security update for tomcat (moderate)
2018-10-06 18:10:05
Security update for tomcat (moderate)
2018-10-25 18:22:29
symantec
symantec
Apache Tomcat Vulnerabilities Jan-Aug 2018
2018-10-11 08:01:01
ubuntucve
ubuntucve
cve
cve
github
github
veracode
veracode
Insecure Defaults
2018-07-23 05:27:23
Insecure Defaults
2018-05-17 04:40:32
Insecure Defaults
2019-01-15 09:24:32
f5
f5
K34468163 : Apache Tomcat vulnerability CVE-2018-8034
2018-09-05 00:00:00
K11420556 : Apache Tomcat vulnerability CVE-2018-8014
2018-07-17 00:00:00
K64921482 : Apache Tomcat vulnerability CVE-2018-11784
2018-10-25 00:00:00
photon
photon
cvelist
cvelist
CVE-2018-8014
2018-05-16 16:00:00
debiancve
debiancve
prion
prion
Default configuration
2018-05-16 16:29:00
Design/Logic Flaw
2018-10-04 13:29:00
nvd
nvd
CVE-2018-8034
2018-08-01 18:29:00
CVE-2018-8014
2018-05-16 16:29:00
redhatcve
redhatcve
CVE-2018-8014
2020-04-06 17:04:57
CVE-2018-11784
2019-11-02 09:34:32
nuclei
nuclei
Apache Tomcat - Open Redirect
2021-03-18 16:22:01
packetstorm
packetstorm
Apache Tomcat 9.0.0M1 Open Redirect
2021-07-11 00:00:00
zdt
zdt
Apache Tomcat 9.0.0.M1 - Open Redirect Vulnerability
2021-07-13 00:00:00