AVG-1317 log

Package tomcat9
Status Fixed
Severity Medium
Type information disclosure
Affected 9.0.39-2
Fixed 9.0.40-1
Current 9.0.53-1 [extra]
Ticket None
Created Thu Dec 3 20:00:07 2020
Issue Severity Remote Type Description
CVE-2020-17527 Medium Yes Information disclosure
It was discovered that Apache Tomcat 10.0.0-M1 to 10.0.0-M9, 9.0.0-M1 to 9.0.39 and 8.5.0 to 8.5.59 could re-use an HTTP request header value from the...
Date Advisory Package Type
05 Dec 2020 ASA-202012-3 tomcat9 information disclosure
References
https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.40