FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

tomcat -- multiple vulnerabilities

Affected packages
		tomcat	<	6.0.45
		tomcat7	<	7.0.68
		tomcat8	<	8.0.30

Details

VuXML ID	1f1124fe-de5c-11e5-8fa8-14dae9d210b8
Discovery	2016-02-22
Entry	2016-02-28
Modified	2017-03-18

Mark Thomas reports:

CVE-2015-5345 Apache Tomcat Directory disclosure

CVE-2016-0706 Apache Tomcat Security Manager bypass

CVE-2016-0714 Apache Tomcat Security Manager Bypass

[source]

References

CVE Name	CVE-2015-5345
CVE Name	CVE-2015-5346
CVE Name	CVE-2016-0706
CVE Name	CVE-2016-0714
URL	http://mail-archives.apache.org/mod_mbox/www-announce/201602.mbox/%3c56CAEF4F.5090003@apache.org%3e
URL	http://mail-archives.apache.org/mod_mbox/www-announce/201602.mbox/%3c56CAEF6A.70703@apache.org%3e
URL	http://mail-archives.apache.org/mod_mbox/www-announce/201602.mbox/%3c56CAEF96.7070701@apache.org%3e

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.