Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -8 articles for you...
100
security advisorymoderateupdateSUSE: 2020:2611-1 Moderate: Tomcat HTTP Request Smuggling and DoS
An update that fixes two vulnerabilities is now available. . SUSE Security Update: Security update for tomcat ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:2611-1 Rating: moderate References: #1164860 #1174117 Cross-References: CVE-2020-13935 CVE-2020-1935 Affected Products: SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 7 SUSE Linux Enterprise Server for SAP 12-SP3 SUSE Linux Enterprise Server for SAP 12-SP2 SUSE Linux Enterprise Server 12-SP3-LTSS SUSE Linux Enterprise Server 12-SP3-BCL SUSE Linux Enterprise Server 12-SP2-LTSS SUSE Linux Enterprise Server 12-SP2-BCL SUSE Enterprise Storage 5 HPE Helion Openstack 8 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for tomcat fixes the following issues: - CVE-2020-1935: Fixed an HTTP request smuggling vulnerability (bsc#1164860). - CVE-2020-13935: Fixed a WebSocket DoS (bsc#1174117). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud Crowbar 8: zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-8-2020-2611=1 - SUSE OpenStack Cloud 8: zypper in -t patch SUSE-OpenStack-Cloud-8-2020-2611=1 - SUSE OpenStack Cloud 7: zypper in -t patch SUSE-OpenStack-Cloud-7-2020-2611=1 - SUSE Linux Enterprise Server for SAP 12-SP3: zypper in -t patch SUSE-SLE-SAP-12-SP3-2020-2611=1 - SUSE Linux Enterprise Server for SAP 12-SP2: zypper in -t patchSUSE-SLE-SAP-12-SP2-2020-2611=1 - SUSE Linux Enterprise Server 12-SP3-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2020-2611=1 - SUSE Linux Enterprise Server 12-SP3-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP3-BCL-2020-2611=1 - SUSE Linux Enterprise Server 12-SP2-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2020-2611=1 - SUSE Linux Enterprise Server 12-SP2-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP2-BCL-2020-2611=1 - SUSE Enterprise Storage 5: zypper in -t patch SUSE-Storage-5-2020-2611=1 - HPE Helion Openstack 8: zypper in -t patch HPE-Helion-OpenStack-8-2020-2611=1 Package List: - SUSE OpenStack Cloud Crowbar 8 (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 - SUSE OpenStack Cloud 8 (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 - SUSE OpenStack Cloud 7 (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 - SUSE Linux Enterprise Server for SAP 12-SP2 (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 - SUSE Linux Enterprise Server 12-SP3-BCL (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 - SUSE Linux Enterprise Server 12-SP2-LTSS (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 - SUSE Linux Enterprise Server 12-SP2-BCL (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 - SUSE Enterprise Storage 5 (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 - HPE Helion Openstack 8 (noarch): tomcat-8.0.53-29.37.1 tomcat-admin-webapps-8.0.53-29.37.1 tomcat-docs-webapp-8.0.53-29.37.1 tomcat-el-3_0-api-8.0.53-29.37.1 tomcat-javadoc-8.0.53-29.37.1 tomcat-jsp-2_3-api-8.0.53-29.37.1 tomcat-lib-8.0.53-29.37.1 tomcat-servlet-3_1-api-8.0.53-29.37.1 tomcat-webapps-8.0.53-29.37.1 References: https://www.suse.com/security/cve/CVE-2020-13935.html https://www.suse.com/security/cve/CVE-2020-1935.html https://bugzilla.suse.com/1164860 https://bugzilla.suse.com/1174117 _______________________________________________ sle-security-updates mailing list
Sep 11, 2020
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!