Release Info

Advisory: CLSA-2025:1738695770

OS: AlmaLinux 9.2 ESU

Public date: 2025-02-04 14:02:53

Project: tomcat

Version: 9.0.62-11.el9_2.3.tuxcare.els3

Errata link: https://errata.tuxcare.com/almalinux9.2-esu/CLSA-2025-1738695770.html

Changelog

- CVE-2023-45648: fix improper processing of trailer headers which could lead to the possibility of request smuggling when behind a reverse proxy

Update

Update command: dnf update tomcat*

Packages list

tomcat-9.0.62-11.el9_2.3.tuxcare.els3.noarch.rpm tomcat-admin-webapps-9.0.62-11.el9_2.3.tuxcare.els3.noarch.rpm tomcat-docs-webapp-9.0.62-11.el9_2.3.tuxcare.els3.noarch.rpm tomcat-el-3.0-api-9.0.62-11.el9_2.3.tuxcare.els3.noarch.rpm tomcat-jsp-2.3-api-9.0.62-11.el9_2.3.tuxcare.els3.noarch.rpm tomcat-lib-9.0.62-11.el9_2.3.tuxcare.els3.noarch.rpm tomcat-servlet-4.0-api-9.0.62-11.el9_2.3.tuxcare.els3.noarch.rpm tomcat-webapps-9.0.62-11.el9_2.3.tuxcare.els3.noarch.rpm

CVEs

CVE-2023-45648