An update is available for tomcat. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
tomcat-1:9.0.87-1.el8_10.7.noarch.rpm
tomcat-1:9.0.87-1.el8_10.7.src.rpm
tomcat-admin-webapps-1:9.0.87-1.el8_10.7.noarch.rpm
tomcat-docs-webapp-1:9.0.87-1.el8_10.7.noarch.rpm
tomcat-el-3.0-api-1:9.0.87-1.el8_10.7.noarch.rpm
tomcat-jsp-2.3-api-1:9.0.87-1.el8_10.7.noarch.rpm
tomcat-lib-1:9.0.87-1.el8_10.7.noarch.rpm
tomcat-servlet-4.0-api-1:9.0.87-1.el8_10.7.noarch.rpm
tomcat-webapps-1:9.0.87-1.el8_10.7.noarch.rpm
No references
https://www.cve.org/CVERecord?id=CVE-2025-31651
https://www.cve.org/CVERecord?id=CVE-2025-55752
https://bugzilla.redhat.com/show_bug.cgi?id=2362782
https://bugzilla.redhat.com/show_bug.cgi?id=2406591
Get the latest Linux and open source security news straight to your inbox.