RHSA-2013:0266Medium
Red Hat Security Advisory: tomcat6 security update
🔗 CVE IDs covered (6)
📋 Description
CVE-2012-2733 — tomcat: HTTP NIO connector OOM DoS via a request with large headers CVE-2012-4431 — Tomcat/JBoss Web - Bypass of CSRF prevention filter CVE-2012-4534 — Tomcat - Denial Of Service when using NIO+SSL+sendfile CVE-2012-5885 — tomcat: three DIGEST authentication implementation issues CVE-2012-5886 — tomcat: three DIGEST authentication implementation issues CVE-2012-5887 — tomcat: three DIGEST authentication implementation issues
🔗 References (8)
- selfhttps://access.redhat.com/errata/RHSA-2013:0266
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttp://tomcat.apache.org/security-6.html
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=873664
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=873695
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=883636
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=883637
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0266.json