Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SciLinux: SLSA-2020-2530-1 Important: Tomcat RCE Deserialization Flaw

Calendar Jun 11, 2020 User Avatar LinuxSecurity Advisories
1 - 2 min read
Scientific Large Esm H500
Topics%20covered

Topics Covered

security advisory tomcat RCE SL7 deserialization flaw session storage
tomcat: deserialization flaw in session persistence storage leading to RCE (CVE-2020-9484) SL7 noarch tomcat-servlet-3.0-api-7.0.76-12.el7_8.noarch.rpm tomcat-7.0.76-12.el7_8.noarch.rpm tomcat-admin-webapps-7.0.76-12.el7_8.noarch.rpm tomcat-docs-webapp-7.0.76-12.el7_8.noarch.rpm tomcat-el-2.2-api-7.0.76-12.el7_8.noarch.rpm tomcat-javadoc-7.0.76-12.el7_8.noarch.rpm [More...] 
Synopsis:          Important: tomcat security update
Advisory ID:       SLSA-2020:2530-1
Issue Date:        2020-06-11
CVE Numbers:       None
--

Security Fix(es):

* tomcat: deserialization flaw in session persistence storage leading to
RCE (CVE-2020-9484)
--

SL7
  noarch
    tomcat-servlet-3.0-api-7.0.76-12.el7_8.noarch.rpm
    tomcat-7.0.76-12.el7_8.noarch.rpm
    tomcat-admin-webapps-7.0.76-12.el7_8.noarch.rpm
    tomcat-docs-webapp-7.0.76-12.el7_8.noarch.rpm
    tomcat-el-2.2-api-7.0.76-12.el7_8.noarch.rpm
    tomcat-javadoc-7.0.76-12.el7_8.noarch.rpm
    tomcat-jsp-2.2-api-7.0.76-12.el7_8.noarch.rpm
    tomcat-jsvc-7.0.76-12.el7_8.noarch.rpm
    tomcat-lib-7.0.76-12.el7_8.noarch.rpm
    tomcat-webapps-7.0.76-12.el7_8.noarch.rpm

- Scientific Linux Development Team
Your message here