RHSA-2024:0532
- Source
- https://access.redhat.com/errata/RHSA-2024:0532
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2024:0532.json
- JSON Data
- https://api.osv.dev/v1/vulns/RHSA-2024:0532
- Related
- Published
- 2024-09-20T14:46:33Z
- Modified
- 2024-10-18T23:53:17Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
- Summary
- Red Hat Security Advisory: tomcat security update
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2024:0532
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=2252050
- https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0532.json
- https://access.redhat.com/security/cve/CVE-2023-46589
- https://www.cve.org/CVERecord?id=CVE-2023-46589
- https://nvd.nist.gov/vuln/detail/CVE-2023-46589
- http://www.openwall.com/lists/oss-security/2023/11/28/2
- https://lists.apache.org/thread/0rqq6ktozqc42ro8hhxdmmdjm1k1tpxr
Affected packages
Red Hat:rhel_eus:8.8::appstream / tomcat
Package
- Name
- tomcat
- Purl
- pkg:rpm/redhat/tomcat
Red Hat:rhel_eus:8.8::appstream / tomcat-admin-webapps
Package
- Name
- tomcat-admin-webapps
- Purl
- pkg:rpm/redhat/tomcat-admin-webapps
Red Hat:rhel_eus:8.8::appstream / tomcat-docs-webapp
Package
- Name
- tomcat-docs-webapp
- Purl
- pkg:rpm/redhat/tomcat-docs-webapp
Red Hat:rhel_eus:8.8::appstream / tomcat-el-3.0-api
Package
- Name
- tomcat-el-3.0-api
- Purl
- pkg:rpm/redhat/tomcat-el-3.0-api
Red Hat:rhel_eus:8.8::appstream / tomcat-jsp-2.3-api
Package
- Name
- tomcat-jsp-2.3-api
- Purl
- pkg:rpm/redhat/tomcat-jsp-2.3-api
Red Hat:rhel_eus:8.8::appstream / tomcat-lib
Package
- Name
- tomcat-lib
- Purl
- pkg:rpm/redhat/tomcat-lib
Red Hat:rhel_eus:8.8::appstream / tomcat-servlet-4.0-api
Package
- Name
- tomcat-servlet-4.0-api
- Purl
- pkg:rpm/redhat/tomcat-servlet-4.0-api