Overview

File _patchinfo of Package patchinfo.40071

<patchinfo incident="40071">
  <issue tracker="cve" id="2025-53506"/>
  <issue tracker="cve" id="2025-52520"/>
  <issue tracker="bnc" id="1246318">VUL-0: CVE-2025-53506: tomcat,tomcat10,tomcat11: uncontrolled resource HTTP/2 client consumption vulnerability</issue>
  <issue tracker="bnc" id="1246388">VUL-0: CVE-2025-52520: tomcat,tomcat10,tomcat11,tomcat6: integer overflow can lead to DoS for some unlikely configurations of multipart upload</issue>
  <packager>mbussolotto</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for tomcat</summary>
  <description>This update for tomcat fixes the following issues:

- CVE-2025-52520: Fixed integer overflow can lead to DoS for some unlikely configurations of multipart upload (bsc#1246388)
- CVE-2025-53506: Fixed uncontrolled resource HTTP/2 client consumption vulnerability (bsc#1246318)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places