Overview

File _patchinfo of Package patchinfo.4746

<patchinfo incident="4746">
  <issue id="1033448" tracker="bnc">VUL-0: CVE-2017-5647: tomcat: [SECURITY] CVE-2017-5647 Apache Tomcat Information Disclosure</issue>
  <issue id="1033447" tracker="bnc">VUL-0: CVE-2017-5648: tomcat: [SECURITY] CVE-2017-5648 Apache Tomcat Information Disclosure</issue>
  <issue id="1015119" tracker="bnc">VUL-0: CVE-2016-8745: tomcat: Apache Tomcat Information Disclosure</issue>
  <issue id="2017-5647" tracker="cve" />
  <issue id="2017-5648" tracker="cve" />
  <issue id="2016-8745" tracker="cve" />
  
 <category>security</category>
  <rating>important</rating>
  <packager>mateialbu</packager>
  <description>
This update for tomcat fixes the following issues:

 - CVE-2017-5647 Pipelined requests could lead to information disclosure (bsc#1033448)
 - CVE-2017-5648 Untrusted application could retain listener leading to information disclosure (bsc#1033447)
 - CVE-2016-8745 shared Processor on Connector code could lead to information disclosure (bsc#1015119)

</description>
  <summary>Security update for tomcat</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places