AVG-1316 log

Package tomcat8
Status Fixed
Severity Medium
Type information disclosure
Affected 8.5.59-2
Fixed 8.5.60-1
Current 8.5.100-2 [extra]
Ticket None
Created Thu Dec 3 19:56:46 2020
Issue Severity Remote Type Description
CVE-2020-17527 Medium Yes Information disclosure
It was discovered that Apache Tomcat 10.0.0-M1 to 10.0.0-M9, 9.0.0-M1 to 9.0.39 and 8.5.0 to 8.5.59 could re-use an HTTP request header value from the...
Date Advisory Package Type
05 Dec 2020 ASA-202012-4 tomcat8 information disclosure
References
https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.60