File _patchinfo of Package patchinfo.18165
<patchinfo incident="18165">
<issue tracker="cve" id="2021-24122"/>
<issue tracker="cve" id="2021-25122"/>
<issue tracker="cve" id="2021-25329"/>
<issue tracker="bnc" id="1182912">VUL-0: CVE-2021-25122: tomcat,tomcat6: Apache Tomcat h2c request mix-up</issue>
<issue tracker="bnc" id="1182909">VUL-0: CVE-2021-25329: tomcat,tomcat6: Apache Tomcat Incomplete fix for</issue>
<issue tracker="bnc" id="1180947">VUL-0: CVE-2021-24122: tomcat6,tomcat: Apache Tomcat Information Disclosure</issue>
<packager>admehmood</packager>
<rating>important</rating>
<category>security</category>
<summary>Security update for tomcat</summary>
<description>This update for tomcat fixes the following issues:
- Fixed CVEs:
* CVE-2021-25122: Apache Tomcat h2c request mix-up (bsc#1182912)
* CVE-2021-25329: Complete fix for CVE-2020-9484 (bsc#1182909)
- Log if file access is blocked due to symlinks: CVE-2021-24122 (bsc#1180947)
</description>
</patchinfo>