RHSA-2017:3080
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: tomcat6 security update
CVSS Metrics
- v3.0•HIGH•Score: 8.1CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Systems
- redhat•tomcat6
< 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9
- redhat•tomcat6-admin-webapps
< 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9
- redhat•tomcat6-docs-webapp
< 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9
- redhat•tomcat6-el-2.1-api
< 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9
- redhat•tomcat6-javadoc
< 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9
- redhat•tomcat6-jsp-2.1-api
< 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9
- redhat•tomcat6-lib
< 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9
- redhat•tomcat6-servlet-2.5-api
< 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9
- redhat•tomcat6-webapps
< 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9 | < 0:6.0.24-111.el6_9
References (27)
- https://access.redhat.com/errata/RHSA-2017:3080
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=1441205
- https://bugzilla.redhat.com/show_bug.cgi?id=1459158
- https://bugzilla.redhat.com/show_bug.cgi?id=1461851
- https://bugzilla.redhat.com/show_bug.cgi?id=1493220
- https://bugzilla.redhat.com/show_bug.cgi?id=1494283
- https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3080.json
- https://access.redhat.com/security/cve/CVE-2017-5647
- https://www.cve.org/CVERecord?id=CVE-2017-5647
- https://nvd.nist.gov/vuln/detail/CVE-2017-5647
- https://access.redhat.com/security/cve/CVE-2017-5664
- https://www.cve.org/CVERecord?id=CVE-2017-5664
- https://nvd.nist.gov/vuln/detail/CVE-2017-5664
- https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.78
- https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.0.44
- https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.15
- https://access.redhat.com/security/cve/CVE-2017-12615
- https://www.cve.org/CVERecord?id=CVE-2017-12615
- https://nvd.nist.gov/vuln/detail/CVE-2017-12615
- https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.81
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- https://access.redhat.com/security/cve/CVE-2017-12617
- https://www.cve.org/CVERecord?id=CVE-2017-12617
- https://nvd.nist.gov/vuln/detail/CVE-2017-12617
- https://tomcat.apache.org/security-7.html
- https://tomcat.apache.org/security-8.html