Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Производитель ПО
Наименование ПО
tomcat6
(any)
tomcat6-admin-webapps
(any)
tomcat6-docs-webapp
(any)
tomcat6-javadoc
(any)
tomcat6-jsp-2_1-api
(any)
tomcat6-lib
(any)
tomcat6-servlet-2_5-api
(any)
tomcat6-webapps
(any)
Описание
Уведомление безопасности об уязвимостях SUSE Manager 1.2 for SLE 11 SP1, SUSE Linux Enterprise Server 11 SP3, SUSE Linux Enterprise Server 11 SP2, SUSE Linux Enterprise Server 11 SP2 for VMware, SUSE Linux Enterprise Server 11 SP3 for VMware
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE Manager 1.2 for SLE 11 SP1:
noarch:
tomcat6 - 6.0.18-20.35.42.1
tomcat6-lib - 6.0.18-20.35.42.1
tomcat6-servlet-2_5-api - 6.0.18-20.35.42.1
tomcat6-jsp-2_1-api - 6.0.18-20.35.42.1
SUSE Linux Enterprise Server 11 SP3:
noarch:
tomcat6 - 6.0.18-20.35.42.1
tomcat6-admin-webapps - 6.0.18-20.35.42.1
tomcat6-servlet-2_5-api - 6.0.18-20.35.42.1
tomcat6-docs-webapp - 6.0.18-20.35.42.1
tomcat6-jsp-2_1-api - 6.0.18-20.35.42.1
tomcat6-webapps - 6.0.18-20.35.42.1
tomcat6-javadoc - 6.0.18-20.35.42.1
tomcat6-lib - 6.0.18-20.35.42.1
SUSE Linux Enterprise Server 11 SP2:
noarch:
tomcat6 - 6.0.18-20.35.42.1
tomcat6-admin-webapps - 6.0.18-20.35.42.1
tomcat6-servlet-2_5-api - 6.0.18-20.35.42.1
tomcat6-docs-webapp - 6.0.18-20.35.42.1
tomcat6-jsp-2_1-api - 6.0.18-20.35.42.1
tomcat6-webapps - 6.0.18-20.35.42.1
tomcat6-javadoc - 6.0.18-20.35.42.1
tomcat6-lib - 6.0.18-20.35.42.1
SUSE Linux Enterprise Server 11 SP2 for VMware:
noarch:
tomcat6 - 6.0.18-20.35.42.1
tomcat6-admin-webapps - 6.0.18-20.35.42.1
tomcat6-servlet-2_5-api - 6.0.18-20.35.42.1
tomcat6-docs-webapp - 6.0.18-20.35.42.1
tomcat6-jsp-2_1-api - 6.0.18-20.35.42.1
tomcat6-webapps - 6.0.18-20.35.42.1
tomcat6-javadoc - 6.0.18-20.35.42.1
tomcat6-lib - 6.0.18-20.35.42.1
SUSE Linux Enterprise Server 11 SP3 for VMware:
noarch:
tomcat6 - 6.0.18-20.35.42.1
tomcat6-admin-webapps - 6.0.18-20.35.42.1
tomcat6-servlet-2_5-api - 6.0.18-20.35.42.1
tomcat6-docs-webapp - 6.0.18-20.35.42.1
tomcat6-jsp-2_1-api - 6.0.18-20.35.42.1
tomcat6-webapps - 6.0.18-20.35.42.1
tomcat6-javadoc - 6.0.18-20.35.42.1
tomcat6-lib - 6.0.18-20.35.42.1
SUSE Manager 1.2 for SLE 11 SP1:
noarch:
tomcat6 - 6.0.18-20.35.42.1
tomcat6-lib - 6.0.18-20.35.42.1
tomcat6-servlet-2_5-api - 6.0.18-20.35.42.1
tomcat6-jsp-2_1-api - 6.0.18-20.35.42.1
SUSE Linux Enterprise Server 11 SP3:
noarch:
tomcat6 - 6.0.18-20.35.42.1
tomcat6-admin-webapps - 6.0.18-20.35.42.1
tomcat6-servlet-2_5-api - 6.0.18-20.35.42.1
tomcat6-docs-webapp - 6.0.18-20.35.42.1
tomcat6-jsp-2_1-api - 6.0.18-20.35.42.1
tomcat6-webapps - 6.0.18-20.35.42.1
tomcat6-javadoc - 6.0.18-20.35.42.1
tomcat6-lib - 6.0.18-20.35.42.1
SUSE Linux Enterprise Server 11 SP2:
noarch:
tomcat6 - 6.0.18-20.35.42.1
tomcat6-admin-webapps - 6.0.18-20.35.42.1
tomcat6-servlet-2_5-api - 6.0.18-20.35.42.1
tomcat6-docs-webapp - 6.0.18-20.35.42.1
tomcat6-jsp-2_1-api - 6.0.18-20.35.42.1
tomcat6-webapps - 6.0.18-20.35.42.1
tomcat6-javadoc - 6.0.18-20.35.42.1
tomcat6-lib - 6.0.18-20.35.42.1
SUSE Linux Enterprise Server 11 SP2 for VMware:
noarch:
tomcat6 - 6.0.18-20.35.42.1
tomcat6-admin-webapps - 6.0.18-20.35.42.1
tomcat6-servlet-2_5-api - 6.0.18-20.35.42.1
tomcat6-docs-webapp - 6.0.18-20.35.42.1
tomcat6-jsp-2_1-api - 6.0.18-20.35.42.1
tomcat6-webapps - 6.0.18-20.35.42.1
tomcat6-javadoc - 6.0.18-20.35.42.1
tomcat6-lib - 6.0.18-20.35.42.1
SUSE Linux Enterprise Server 11 SP3 for VMware:
noarch:
tomcat6 - 6.0.18-20.35.42.1
tomcat6-admin-webapps - 6.0.18-20.35.42.1
tomcat6-servlet-2_5-api - 6.0.18-20.35.42.1
tomcat6-docs-webapp - 6.0.18-20.35.42.1
tomcat6-jsp-2_1-api - 6.0.18-20.35.42.1
tomcat6-webapps - 6.0.18-20.35.42.1
tomcat6-javadoc - 6.0.18-20.35.42.1
tomcat6-lib - 6.0.18-20.35.42.1
Ссылки
http://lists.suse.com/pipermail/sle-security-updates/2013-August/000584.html
https://bugzilla.novell.com/768772
https://bugzilla.novell.com/804992
https://bugzilla.novell.com/818948
https://bugzilla.novell.com/822177
https://bugzilla.novell.com/831119
http://download.novell.com/patch/finder/?keywords=12b24e7d9af803f495821f7913c74791
http://download.novell.com/patch/finder/?keywords=a5246128c8e50844e60161cb307cf899
http://download.novell.com/patch/finder/?keywords=ba897d3a71e20b3c4589c544b8b8a1f2
Источник: CVE
Наименование: CVE-2013-1976
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1976
Источник: CVE
Наименование: CVE-2012-0022
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0022
Источник: CVE
Наименование: CVE-2012-3544
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3544
https://bugzilla.novell.com/768772
https://bugzilla.novell.com/804992
https://bugzilla.novell.com/818948
https://bugzilla.novell.com/822177
https://bugzilla.novell.com/831119
http://download.novell.com/patch/finder/?keywords=12b24e7d9af803f495821f7913c74791
http://download.novell.com/patch/finder/?keywords=a5246128c8e50844e60161cb307cf899
http://download.novell.com/patch/finder/?keywords=ba897d3a71e20b3c4589c544b8b8a1f2
Источник: CVE
Наименование: CVE-2013-1976
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1976
Источник: CVE
Наименование: CVE-2012-0022
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0022
Источник: CVE
Наименование: CVE-2012-3544
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3544