RHSA-2010:0580: Important: tomcat5 security update

First published: Mon Aug 02 2010(Updated: )

Apache Tomcat is a servlet container for the Java Servlet and JavaServer<br>Pages (JSP) technologies.<br>A flaw was found in the way Tomcat handled the Transfer-Encoding header in<br>HTTP requests. A specially-crafted HTTP request could prevent Tomcat from<br>sending replies, or cause Tomcat to return truncated replies, or replies<br>containing data related to the requests of other users, for all subsequent<br>HTTP requests. (CVE-2010-2227)<br>The Tomcat security update RHSA-2009:1164 did not, unlike the erratum text<br>stated, provide a fix for CVE-2009-0781, a cross-site scripting (XSS) flaw<br>in the examples calendar application. With some web browsers, remote<br>attackers could use this flaw to inject arbitrary web script or HTML via<br>the "time" parameter. (CVE-2009-2696)<br>Two directory traversal flaws were found in the Tomcat deployment process.<br>A specially-crafted WAR file could, when deployed, cause a file to be<br>created outside of the web root into any directory writable by the Tomcat<br>user, or could lead to the deletion of files in the Tomcat host's work<br>directory. (CVE-2009-2693, CVE-2009-2902)<br>Users of Tomcat should upgrade to these updated packages, which contain<br>backported patches to resolve these issues. Tomcat must be restarted for<br>this update to take effect.<br>

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/description
• agent/event
• agent/first-publish-date
• agent/last-modified-date
• agent/references
• agent/remedy
• agent/severity
• agent/softwarecombine
• agent/tags
• agent/title
• agent/type
• agent/weakness
• collector/redhat-errata
• source/Red Hat
• anchor-id/RHSA-2010:0580
• agent/software-canonical-lookup
• package-manager/redhat