Overview

File _patchinfo of Package patchinfo.28094

<patchinfo incident="28094">
  <issue tracker="cve" id="2016-3092"/>
  <issue tracker="cve" id="2023-24998"/>
  <issue tracker="bnc" id="986359">VUL-0: CVE-2016-3092: tomcat6,tomcat5,tomcat,jakarta-commons-fileupload: Usage of vulnerable FileUpload package can result in denial of service</issue>
  <issue tracker="bnc" id="1208513">VUL-0: CVE-2023-24998: tomcat,tomcat6,apache-commons-fileupload,jakarta-commons-fileupload: FileUpload DoS with excessive parts</issue>
  <packager>david.anes</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for jakarta-commons-fileupload</summary>
  <description>This update for jakarta-commons-fileupload fixes the following issues:

- CVE-2016-3092: Fixed a usage of vulnerable FileUpload package can result in denial of service (bsc#986359). 
- CVE-2023-24998: Fixed a FileUpload deny of service with excessive parts (bsc#1208513).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places