AVG-1317 log
| Package | tomcat9 |
| Status | Fixed |
| Severity | Medium |
| Type | information disclosure |
| Affected | 9.0.39-2 |
| Fixed | 9.0.40-1 |
| Current | 9.0.107-1 [extra] |
| Ticket | None |
| Created | Thu Dec 3 20:00:07 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-17527 | Medium | Yes | Information disclosure | It was discovered that Apache Tomcat 10.0.0-M1 to 10.0.0-M9, 9.0.0-M1 to 9.0.39 and 8.5.0 to 8.5.59 could re-use an HTTP request header value from the... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 05 Dec 2020 | ASA-202012-3 | tomcat9 | information disclosure |
| References |
|---|
https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.40 |