ELSA-2017-1809

ULN >
Oracle Linux Errata repository >
ELSA-2017-1809

ELSA-2017-1809 - tomcat security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2017-07-27

Description

[0:7.0.69-12]
- Resolves: rhbz#1441487 CVE-2017-5648 tomcat: Calls to application listeners did not use the appropriate facade object
- Resolves: rhbz#1441480 CVE-2017-5647 tomcat: Incorrect handling of pipelined requests when send file was used
- Resolves: rhbz#1459746 CVE-2017-5664 tomcat: Security constrained bypass in error page mechanism

Related CVEs

CVE-2017-5664

CVE-2017-5648

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	tomcat-7.0.69-12.el7_3.src.rpm	d65f34ebdab8f257965a96eb204fbff8089246f01b380ebd751de5b62af419e0	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-7.0.69-12.el7_3.src.rpm	d65f34ebdab8f257965a96eb204fbff8089246f01b380ebd751de5b62af419e0	ELSA-2020-5020	ol7_x86_64_optional_archive
	tomcat-7.0.69-12.el7_3.src.rpm	d65f34ebdab8f257965a96eb204fbff8089246f01b380ebd751de5b62af419e0	ELSA-2020-5020	ol7_x86_64_u3_patch
	tomcat-7.0.69-12.el7_3.noarch.rpm	ca56907c91306137d5e8c8b9d862f5247a6d40b1510e8ff0a6c60d2693c165ee	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-7.0.69-12.el7_3.noarch.rpm	ca56907c91306137d5e8c8b9d862f5247a6d40b1510e8ff0a6c60d2693c165ee	ELSA-2020-5020	ol7_x86_64_u3_patch
	tomcat-admin-webapps-7.0.69-12.el7_3.noarch.rpm	1929cd3c6150b886853f570b9c484887751470347a537901a63efa3c2f9f2685	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-admin-webapps-7.0.69-12.el7_3.noarch.rpm	1929cd3c6150b886853f570b9c484887751470347a537901a63efa3c2f9f2685	ELSA-2020-5020	ol7_x86_64_u3_patch
	tomcat-docs-webapp-7.0.69-12.el7_3.noarch.rpm	a03d9d5fb6699e4d1402562270ec9b2ec79fa77562bb568a6b3e8168d6895ff0	ELSA-2020-5020	ol7_x86_64_optional_archive
	tomcat-el-2.2-api-7.0.69-12.el7_3.noarch.rpm	86e5c51de77dafb9900cab48a23e62b8e6df00a5b643eee972bd52fd2d38e300	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-el-2.2-api-7.0.69-12.el7_3.noarch.rpm	86e5c51de77dafb9900cab48a23e62b8e6df00a5b643eee972bd52fd2d38e300	ELSA-2020-5020	ol7_x86_64_u3_patch
	tomcat-javadoc-7.0.69-12.el7_3.noarch.rpm	67b38f55cb1edcfb14270a58cdb80b90f88a902baa97e2611be972abde323799	ELSA-2020-5020	ol7_x86_64_optional_archive
	tomcat-jsp-2.2-api-7.0.69-12.el7_3.noarch.rpm	7a20d3a84f73607d080197750755e01116c690407e5ed69429f167faa16c2ef6	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-jsp-2.2-api-7.0.69-12.el7_3.noarch.rpm	7a20d3a84f73607d080197750755e01116c690407e5ed69429f167faa16c2ef6	ELSA-2020-5020	ol7_x86_64_u3_patch
	tomcat-jsvc-7.0.69-12.el7_3.noarch.rpm	ae354cbdbee456bbe7ea9b76fb32b851cf1d6b84d99bca9c760b1c36f9350b93	ELSA-2020-5020	ol7_x86_64_optional_archive
	tomcat-lib-7.0.69-12.el7_3.noarch.rpm	51caee991f19a3287bef57c4f8e28beab9a45a2bbf2624f8193803f9865e3a50	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-lib-7.0.69-12.el7_3.noarch.rpm	51caee991f19a3287bef57c4f8e28beab9a45a2bbf2624f8193803f9865e3a50	ELSA-2020-5020	ol7_x86_64_u3_patch
	tomcat-servlet-3.0-api-7.0.69-12.el7_3.noarch.rpm	a4699c21bb9ca3425fd65688af6a715394827395350ebd10a66b9f795fdbed58	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-servlet-3.0-api-7.0.69-12.el7_3.noarch.rpm	a4699c21bb9ca3425fd65688af6a715394827395350ebd10a66b9f795fdbed58	ELSA-2020-5020	ol7_x86_64_u3_patch
	tomcat-webapps-7.0.69-12.el7_3.noarch.rpm	65f7bc1890665f156f32a4b911f4274fa6ac31ff00df667e884d635836476825	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-webapps-7.0.69-12.el7_3.noarch.rpm	65f7bc1890665f156f32a4b911f4274fa6ac31ff00df667e884d635836476825	ELSA-2020-5020	ol7_x86_64_u3_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691