Debian 9: DLA-2279-1 Moderate: Tomcat8 Remote Code Execution Risk
debian lts
July 12, 2020
Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine
Topics Covered
Summary
CVE-2020-9484
When using Apache Tomcat and an attacker is able to control the
contents and name of a file on the server; and b) the server is
configured to use the PersistenceManager with a FileStore; and c)
the PersistenceManager is configured with
sessionAttributeValueClassNameFilter="null" (the default unless a
SecurityManager is used) or a sufficiently lax filter to allow the
attacker provided object to be deserialized; and d) the attacker
knows the relative file path from the storage location used by
FileStore to the file the attacker has control over; then, using a
specifically crafted request, the attacker will be able to trigger
remote code execution via deserialization of the file under their
control. Note that all of conditions a) to d) must be true for the
attack to succeed.
CVE-2020-11996
A specially crafted sequence of HTTP/2 requests sent to Apache
Tomcat could trigger high CPU usage for several seconds. If a
PREVIOUS
NEXT
Package: tomcat8
Version: 8.5.54-0+deb9u2
CVE ID: CVE-2020-9484 CVE-2020-11996
Debian Bug: 961209
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!