File _patchinfo of Package patchinfo.18165

<patchinfo incident="18165">
  <issue tracker="cve" id="2021-24122"/>
  <issue tracker="cve" id="2021-25122"/>
  <issue tracker="cve" id="2021-25329"/>
  <issue tracker="bnc" id="1182912">VUL-0: CVE-2021-25122: tomcat,tomcat6: Apache Tomcat h2c request mix-up</issue>
  <issue tracker="bnc" id="1182909">VUL-0: CVE-2021-25329: tomcat,tomcat6: Apache Tomcat Incomplete fix for</issue>
  <issue tracker="bnc" id="1180947">VUL-0: CVE-2021-24122: tomcat6,tomcat:  Apache Tomcat Information Disclosure</issue>
  <packager>admehmood</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for tomcat</summary>
  <description>This update for tomcat fixes the following issues:

- Fixed CVEs:
  * CVE-2021-25122: Apache Tomcat h2c request mix-up (bsc#1182912)
  * CVE-2021-25329: Complete fix for CVE-2020-9484 (bsc#1182909)
- Log if file access is blocked due to symlinks: CVE-2021-24122 (bsc#1180947)
</description>
</patchinfo>
openSUSE Build Service is sponsored by