AVG-1316 log
| Package | tomcat8 |
| Status | Fixed |
| Severity | Medium |
| Type | information disclosure |
| Affected | 8.5.59-2 |
| Fixed | 8.5.60-1 |
| Current | 8.5.100-2 [extra] |
| Ticket | None |
| Created | Thu Dec 3 19:56:46 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-17527 | Medium | Yes | Information disclosure | It was discovered that Apache Tomcat 10.0.0-M1 to 10.0.0-M9, 9.0.0-M1 to 9.0.39 and 8.5.0 to 8.5.59 could re-use an HTTP request header value from the... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 05 Dec 2020 | ASA-202012-4 | tomcat8 | information disclosure |
| References |
|---|
https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.60 |