USN-4557-1: Tomcat vulnerabilities
30 September 2020
Several security issues were fixed in Tomcat.
Releases
Packages
- tomcat6 - Servlet and JSP engine
Details
It was discovered that the Tomcat realm implementations incorrectly handled
passwords when a username didn't exist. A remote attacker could possibly
use this issue to enumerate usernames. (CVE-2016-0762)
Alvaro Munoz and Alexander Mirosh discovered that Tomcat incorrectly
limited use of a certain utility method. A malicious application could
possibly use this to bypass Security Manager restrictions. (CVE-2016-5018)
It was discovered that Tomcat incorrectly controlled reading system
properties. A malicious application could possibly use this to bypass
Security Manager restrictions. (CVE-2016-6794)
It was discovered that Tomcat incorrectly controlled certain configuration
parameters. A malicious application could possibly use this to bypass
Security Manager restrictions. (CVE-2016-6796)
It was discovered that Tomcat incorrectly limited access to global JNDI
resources. A malicious application could use this to access any global JNDI
resource without an explicit ResourceLink. (CVE-2016-6797)
Regis Leroy discovered that Tomcat incorrectly filtered certain invalid
characters from the HTTP request line. A remote attacker could possibly
use this issue to inject data into HTTP responses. (CVE-2016-6816)
Pierre Ernst discovered that the Tomcat JmxRemoteLifecycleListener did not
implement a recommended fix. A remote attacker could possibly use this
issue to execute arbitrary code. (CVE-2016-8735)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04
In general, a standard system update will make all the necessary changes.
Related notices
- USN-3177-1: tomcat7-docs, libservlet3.0-java-doc, libservlet3.1-java, tomcat7, libservlet3.1-java-doc, tomcat7-examples, tomcat8-user, tomcat7-user, tomcat8-admin, tomcat7-admin, libservlet3.0-java, libtomcat6-java, tomcat8-docs, tomcat8-examples, tomcat8-common, libtomcat7-java, tomcat6, tomcat8, tomcat7-common, libtomcat8-java