Mageia: 2020-0277 Moderate: Tomcat Remote Code Execution Advisory
mageia
July 5, 2020
Updated tomcat packages fix security vulnerability: When using Apache Tomcat versions 9.0.0.M1 to 9.0.34, if a) an attacker is able to control the contents and name of a file on t...
Summary
Updated tomcat packages fix security vulnerability:
When using Apache Tomcat versions 9.0.0.M1 to 9.0.34, if a) an attacker
is able to control the contents and name of a file on the server; and
b) the server is configured to use the PersistenceManager with a
FileStore; and c) the PersistenceManager is configured with
sessionAttributeValueClassNameFilter="null" (the default unless a
SecurityManager is used) or a sufficiently lax filter to allow the
attacker provided object to be deserialized; and d) the attacker knows
the relative file path from the storage location used by FileStore to the
file the attacker has control over; then, using a specifically crafted
request, the attacker will be able to trigger remote code execution via
deserialization of the file under their control. Note that all of
conditions a) to d) must be true for the attack to succeed (CVE-2020-9484).
References
- https://bugs.mageia.org/show_bug.cgi?id=26657
- https://tomcat.apache.org/security-9.html
- https://www.cve.org/CVERecord?id=CVE-2020-9484
Resolution
SRPMS
- 7/core/tomcat-9.0.35-1.mga7
PREVIOUS 
NEXT Publication date: 05 Jul 2020
URL: https://advisories.mageia.org/MGASA-2020-0277.html
Type: security
CVE: CVE-2020-9484
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!