RHSA-2016:2045
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: tomcat6 security and bug fix update
CVSS Metrics
- v3.0•HIGH•Score: 8.8CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Systems
- redhat•tomcat6
< 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8
- redhat•tomcat6-admin-webapps
< 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8
- redhat•tomcat6-docs-webapp
< 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8
- redhat•tomcat6-el-2.1-api
< 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8
- redhat•tomcat6-javadoc
< 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8
- redhat•tomcat6-jsp-2.1-api
< 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8
- redhat•tomcat6-lib
< 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8
- redhat•tomcat6-servlet-2.5-api
< 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8
- redhat•tomcat6-webapps
< 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8 | < 0:6.0.24-98.el6_8
References (33)
- https://access.redhat.com/errata/RHSA-2016:2045
- https://access.redhat.com/security/updates/classification/#important
- https://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.45
- https://bugzilla.redhat.com/show_bug.cgi?id=1265698
- https://bugzilla.redhat.com/show_bug.cgi?id=1311082
- https://bugzilla.redhat.com/show_bug.cgi?id=1311087
- https://bugzilla.redhat.com/show_bug.cgi?id=1311089
- https://bugzilla.redhat.com/show_bug.cgi?id=1353809
- https://bugzilla.redhat.com/show_bug.cgi?id=1357123
- https://bugzilla.redhat.com/show_bug.cgi?id=1367447
- https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2045.json
- https://access.redhat.com/security/cve/CVE-2015-5174
- https://www.cve.org/CVERecord?id=CVE-2015-5174
- https://nvd.nist.gov/vuln/detail/CVE-2015-5174
- http://seclists.org/bugtraq/2016/Feb/149
- https://access.redhat.com/security/cve/CVE-2015-5345
- https://www.cve.org/CVERecord?id=CVE-2015-5345
- https://nvd.nist.gov/vuln/detail/CVE-2015-5345
- http://seclists.org/bugtraq/2016/Feb/146
- https://access.redhat.com/security/cve/CVE-2016-0706
- https://www.cve.org/CVERecord?id=CVE-2016-0706
- https://nvd.nist.gov/vuln/detail/CVE-2016-0706
- http://seclists.org/bugtraq/2016/Feb/144
- https://access.redhat.com/security/cve/CVE-2016-0714
- https://www.cve.org/CVERecord?id=CVE-2016-0714
- https://nvd.nist.gov/vuln/detail/CVE-2016-0714
- http://seclists.org/bugtraq/2016/Feb/145
- https://access.redhat.com/security/cve/CVE-2016-5388
- https://www.cve.org/CVERecord?id=CVE-2016-5388
- https://nvd.nist.gov/vuln/detail/CVE-2016-5388
- https://access.redhat.com/security/cve/CVE-2016-6325
- https://www.cve.org/CVERecord?id=CVE-2016-6325
- https://nvd.nist.gov/vuln/detail/CVE-2016-6325