[ALSA-2024:1134] Important: tomcat security update
Type:
security
Severity:
important
Release date:
2024-03-07
Description:
Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. Security Fix(es): * tomcat: HTTP request smuggling via malformed trailer headers (CVE-2023-46589) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
noarch tomcat-servlet-4.0-api-9.0.62-37.el9_3.2.noarch.rpm 0164c92d3cf4769a215e18fec3fa4b459c82c6e6e52871e59c4a579b28eea94e
noarch tomcat-admin-webapps-9.0.62-37.el9_3.2.noarch.rpm 069c57fa81e2858166dca96c08e1c93f1259f11a411ad7cbfa82440d6375830a
noarch tomcat-docs-webapp-9.0.62-37.el9_3.2.noarch.rpm 76e70ae7ed64ac414de842c8dc61854879a92aa326155aea740a3edf0c4357a3
noarch tomcat-webapps-9.0.62-37.el9_3.2.noarch.rpm 7789ab9419a6025cb459178543673fb5c992ce228b8b48240518be740909b1d5
noarch tomcat-jsp-2.3-api-9.0.62-37.el9_3.2.noarch.rpm a744337038859ecd3f416462a7170a174807534c8b7f4d4c86467990ae256edf
noarch tomcat-lib-9.0.62-37.el9_3.2.noarch.rpm b21f1a2fd0eaa58172ab691b12f90e7d6c42fa0988ccb63007e4e0a2ba6c8d6c
noarch tomcat-el-3.0-api-9.0.62-37.el9_3.2.noarch.rpm c77cf32cc2001aa81bf17b88076d291e28e4af6ac43dbf41e9fc28465906dba7
noarch tomcat-9.0.62-37.el9_3.2.noarch.rpm e7f160a9ff4aca2f762025d1c74fbe968415c9b8bd4f0ccdc206e148c89b895d
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.