Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Debian 11: Tomcat9 Critical DoS Issues Fixed DLA-4244-1

debian lts
Calendar Grey July 22, 2025
Dist Debian Esm H88
The Debian LTS advisory warns of critical security vulnerabilities in Tomcat 9, emphasizing resource leaks and denial of service risks that could affect applications.
Several security vulnerabilities have been found in Tomcat 9, a Java web server and servlet engine
Topics%20covered

Topics Covered

security advisory denial of service critical debian resource consumption tomcat9

Summary

For Debian 11 bullseye, these problems have been fixed in version
9.0.107-0+deb11u1.

We recommend that you upgrade your tomcat9 packages.

For the detailed security status of tomcat9 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/tomcat9

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
critical
Lowest
Low
Medium
High
Critical

Package: tomcat9
Version: 9.0.107-0+deb11u1
CVE ID: CVE-2024-34750 CVE-2024-54677 CVE-2025-31650 CVE-2025-31651

Topics%20covered

Topics Covered

security advisory denial of service critical debian resource consumption tomcat9

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here