An update is available for tomcat. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
tomcat-servlet-4.0-api-1:9.0.87-1.el8_10.6.noarch.rpm
tomcat-lib-1:9.0.87-1.el8_10.6.noarch.rpm
tomcat-1:9.0.87-1.el8_10.6.noarch.rpm
tomcat-1:9.0.87-1.el8_10.6.src.rpm
tomcat-admin-webapps-1:9.0.87-1.el8_10.6.noarch.rpm
tomcat-docs-webapp-1:9.0.87-1.el8_10.6.noarch.rpm
tomcat-el-3.0-api-1:9.0.87-1.el8_10.6.noarch.rpm
tomcat-jsp-2.3-api-1:9.0.87-1.el8_10.6.noarch.rpm
tomcat-webapps-1:9.0.87-1.el8_10.6.noarch.rpm
No references
https://www.cve.org/CVERecord?id=CVE-2025-48976
https://www.cve.org/CVERecord?id=CVE-2025-48988
https://www.cve.org/CVERecord?id=CVE-2025-48989
https://www.cve.org/CVERecord?id=CVE-2025-49125
https://www.cve.org/CVERecord?id=CVE-2025-52434
https://www.cve.org/CVERecord?id=CVE-2025-52520
https://www.cve.org/CVERecord?id=CVE-2025-53506
https://bugzilla.redhat.com/show_bug.cgi?id=2373015
https://bugzilla.redhat.com/show_bug.cgi?id=2373018
https://bugzilla.redhat.com/show_bug.cgi?id=2373020
https://bugzilla.redhat.com/show_bug.cgi?id=2373309
https://bugzilla.redhat.com/show_bug.cgi?id=2379374
https://bugzilla.redhat.com/show_bug.cgi?id=2379382
https://bugzilla.redhat.com/show_bug.cgi?id=2379386
Get the latest Linux and open source security news straight to your inbox.