[ALSA-2024:0539] Important: tomcat security update
Type:
security
Severity:
important
Release date:
2024-01-29
Description:
Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. Security Fix(es): * tomcat: HTTP request smuggling via malformed trailer headers (CVE-2023-46589) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
noarch tomcat-9.0.62-27.el8_9.3.noarch.rpm 40a035c45bcc078e2a3771cfe9a3e3cd6f0d3f90456e3a6f8e6df6730c345a83
noarch tomcat-webapps-9.0.62-27.el8_9.3.noarch.rpm 52520e77f8a73d8bf8bd747190f8300ad49c64c4cce82418f60657a7392b0f2b
noarch tomcat-admin-webapps-9.0.62-27.el8_9.3.noarch.rpm 747e3526bccf1f55f873d9cdfe9407e9bf22bba7f6d5edee69515418792cc9b6
noarch tomcat-servlet-4.0-api-9.0.62-27.el8_9.3.noarch.rpm 7c8a9375e858fc156e141be28eb128584ff7c22449b74022eacc0f270ced3412
noarch tomcat-jsp-2.3-api-9.0.62-27.el8_9.3.noarch.rpm a5aeec14a265a6cb059f83c6993d65e44e89c846422c37765c75d3f24ba882e1
noarch tomcat-lib-9.0.62-27.el8_9.3.noarch.rpm a5bee018d59b8ae797962cfaa870615064b6f641173b368e73987a4c80a115cf
noarch tomcat-docs-webapp-9.0.62-27.el8_9.3.noarch.rpm ea658c3eb549ac700f067652a067f20629d55bf41d80e5989e5488665d3af7ce
noarch tomcat-el-3.0-api-9.0.62-27.el8_9.3.noarch.rpm ffe139a0d6fa847d864039f3cf82727b9412e19bb130c1c64697ebd2e71b871d
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.