Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: GLSA-200906-04 Low Severity: Information Leak in Apache Tomcat JK

gentoo
Calendar Grey June 30, 2009
Dist Gentoo Esm H88
The Apache Tomcat JK Connector has a vulnerability related to information leakage; Gentoo advises users to update promptly.
An error in the Apache Tomcat JK Connector might allow for an information disclosure flaw.

Summary

Gentoo Linux Security Advisory GLSA 200906-04 https://security.gentoo.org/ Severity: Low Title: Apache Tomcat JK Connector: Information disclosure Date: June 29, 2009 Bugs: #265455 ID: 200906-04

Synopsis ======= An error in the Apache Tomcat JK Connector might allow for an information disclosure flaw.
Background ========= The Apache Tomcat JK Connector (aka mod_jk) connects the Tomcat application server with the Apache HTTP Server.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apache/mod_jk < 1.2.27 >= 1.2.27
========== The Red Hat Security Response Team discovered that mod_jk does not properly handle (1) requests setting the "Content-Length" header ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo software update low severity information disclosure Apache Tomcat JK Connector

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
low
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory Gentoo software update low severity information disclosure Apache Tomcat JK Connector

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here