Debian LTS: DLA-2133-1 Critical: Tomcat7 HTTP Request Smuggling Risks
debian lts
March 4, 2020
Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine
Summary
The refactoring in 7.0.98 introduced a regression. The result of
the regression was that invalid Transfer-Encoding headers were
incorrectly processed leading to a possibility of HTTP Request
Smuggling if Tomcat was located behind a reverse proxy that
incorrectly handled the invalid Transfer-Encoding header in a
particular manner. Such a reverse proxy is considered unlikely.
CVE-2020-1935
The HTTP header parsing code used an approach to end-of-line (EOL)
parsing that allowed some invalid HTTP headers to be parsed as
valid. This led to a possibility of HTTP Request Smuggling if Tomcat
was located behind a reverse proxy that incorrectly handled the
invalid Transfer-Encoding header in a particular manner. Such a
reverse proxy is considered unlikely.
CVE-2020-1938
When using the Apache JServ Protocol (AJP), care must be taken when
trusting incoming connections to Apache Tomcat. Tomcat treats AJP
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Package: tomcat7
Version: 7.0.56-3+really7.0.100-1
CVE ID: CVE-2019-17569 CVE-2020-1935 CVE-2020-1938
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!