FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

tomcat -- multiple vulnerabilities

Affected packages
tomcat < 6.0.48
tomcat7 < 7.0.73
tomcat8 < 8.0.39

Details

VuXML ID 0b9af110-d529-11e6-ae1b-002590263bf5
Discovery 2016-11-22
Entry 2017-01-07
Modified 2017-03-18

The Apache Software Foundation reports:

Important: Remote Code Execution CVE-2016-8735

Important: Information Disclosure CVE-2016-6816

References

CVE Name CVE-2016-6816
CVE Name CVE-2016-8735
FreeBSD PR ports/214599
URL http://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.48
URL http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.73
URL http://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.0.39