Overview

File _patchinfo of Package patchinfo.33319

<patchinfo incident="33319">
  <issue tracker="cve" id="2024-24549"/>
  <issue tracker="cve" id="2024-23672"/>
  <issue tracker="bnc" id="1221386">VUL-0: CVE-2024-24549: tomcat,tomcat10: HTTP/2 header handling DoS</issue>
  <issue tracker="bnc" id="1221385">VUL-0: CVE-2024-23672: tomcat,tomcat10: WebSocket DoS with incomplete closing handshake</issue>
  <packager>mbussolotto</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for tomcat</summary>
  <description>This update for tomcat fixes the following issues:

  - CVE-2024-24549: Fixed denial of service during header validation for HTTP/2 stream (bsc#1221386)
  - CVE-2024-23672: Fixed denial of service due to malicious WebSocket client keeping connection open (bsc#1221385)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places