[ubuntu/noble-security] tomcat9 9.0.70-2ubuntu0.1 (Accepted)
Emilia Torino
emilia.torino at canonical.com
Wed Sep 25 12:29:15 UTC 2024
tomcat9 (9.0.70-2ubuntu0.1) noble-security; urgency=medium
* SECURITY UPDATE: HTTP request smuggling via invalid header size
- debian/patches/CVE-2023-46589_1.patch: Differentiate request cancellation
from a bad request.
- debian/patches/CVE-2023-46589_2.patch: Ensure IOException on request read
always triggers error handling.
- CVE-2023-46589
Date: 2024-09-24 14:20:12.793129+00:00
Changed-By: Octavio Galland <octavio.galland at canonical.com>
Signed-By: Emilia Torino <emilia.torino at canonical.com>
https://launchpad.net/ubuntu/+source/tomcat9/9.0.70-2ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list