Overview

File _patchinfo of Package patchinfo.29082

<patchinfo incident="29082">
  <issue tracker="bnc" id="1208513">VUL-0: CVE-2023-24998: tomcat,tomcat6,apache-commons-fileupload,jakarta-commons-fileupload: FileUpload DoS with excessive parts</issue>
  <issue tracker="bnc" id="1211608">VUL-0: CVE-2023-28709: apache-commons-fileupload,tomcat,tomcat6,jakarta-commons-fileupload: Apache Tomcat - Fix for CVE-2023-24998 was incomplete</issue>
  <issue tracker="cve" id="2023-28709"/>
  <issue tracker="cve" id="2023-24998"/>
  <packager>fstrba</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for tomcat</summary>
  <description>This update for tomcat fixes the following issues:

Updated to version 9.0.75:
- CVE-2023-28709: Mended an incomplete fix for CVE-2023-24998 (bsc#1208513, bsc#1211608).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places