[Git][security-tracker-team/security-tracker][master] CVE-2024-24549,CVE-2024-23672,tomcat10: fixed in unstable
Markus Koschany (@apo)
apo at debian.org
Sat Apr 6 13:04:17 BST 2024
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0971733c by Markus Koschany at 2024-04-06T14:03:33+02:00
CVE-2024-24549,CVE-2024-23672,tomcat10: fixed in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6890,7 +6890,7 @@ CVE-2024-24692 (Race condition in the installer for Zoom Rooms Client for Window
NOT-FOR-US: Zoom
CVE-2024-24549 (Denial of Service due to improper input validation vulnerability for H ...)
{DLA-3779-1}
- - tomcat10 <unfixed> (bug #1066878)
+ - tomcat10 10.1.20-1 (bug #1066878)
- tomcat9 9.0.70-2
NOTE: https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg
NOTE: https://github.com/apache/tomcat/commit/d07c82194edb69d99b438828fe2cbfadbb207843 (10.1.19)
@@ -6898,7 +6898,7 @@ CVE-2024-24549 (Denial of Service due to improper input validation vulnerability
NOTE: Starting with 9.0.70-2 Tomcat9 no longer ships the server stack, using that as the fixed version
CVE-2024-23672 (Denial of Service via incomplete cleanup vulnerability in Apache Tomca ...)
{DLA-3779-1}
- - tomcat10 <unfixed> (bug #1066877)
+ - tomcat10 10.1.20-1 (bug #1066877)
- tomcat9 9.0.70-2
NOTE: https://lists.apache.org/thread/cmpswfx6tj4s7x0nxxosvfqs11lvdx2f
NOTE: https://github.com/apache/tomcat/commit/0052b374684b613b0c849899b325ebe334ac6501 (10.1.19)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0971733c88eb4f025c2862556942f17ba54d772b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0971733c88eb4f025c2862556942f17ba54d772b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240406/98466762/attachment.htm>
More information about the debian-security-tracker-commits
mailing list