Release Info

Advisory: CLSA-2024:1732701424

OS: Ubuntu 18.04 ELS

Public date: 2024-11-27 04:57:06

Project: tomcat8

Version: 8.5.39-1ubuntu1~18.04.3+tuxcare.els7

Errata link: https://errata.cloudlinux.com/ubuntu18-els/CLSA-2024-1732701424.html

Changelog

* SECURITY UPDATE: DoS via incomplete cleanup vulnerability - debian/patches/CVE-2024-23672.patch: refactor WebSocket close for suspend/resume to ensure connection closure completes - CVE-2024-23672

Update

Update command: apt-get update apt-get --only-upgrade install tomcat8*

Packages list

libtomcat8-embed-java_8.5.39-1ubuntu1~18.04.3+tuxcare.els7_all.deb libtomcat8-java_8.5.39-1ubuntu1~18.04.3+tuxcare.els7_all.deb tomcat8_8.5.39-1ubuntu1~18.04.3+tuxcare.els7_all.deb tomcat8-admin_8.5.39-1ubuntu1~18.04.3+tuxcare.els7_all.deb tomcat8-common_8.5.39-1ubuntu1~18.04.3+tuxcare.els7_all.deb tomcat8-docs_8.5.39-1ubuntu1~18.04.3+tuxcare.els7_all.deb tomcat8-examples_8.5.39-1ubuntu1~18.04.3+tuxcare.els7_all.deb tomcat8-user_8.5.39-1ubuntu1~18.04.3+tuxcare.els7_all.deb

CVEs

CVE-2024-23672