Site icon API Security Blog

Fedora 40 : tomcat (2024-c404b99f19)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c404b99f19 advisory. This update includes a rebase from 9.0.83 to 9.0.89. * [#2269611](https://bugzilla.redhat.com/show_bug.cgi?id=2269611) CVE-2024-24549 tomcat: CVE-2024-24549: Apache Tomcat: HTTP/2 header handling DoS * [#2269612](https://bugzilla.redhat.com/show_bug.cgi?id=2269612) CVE-2024-23672 tomcat: Apache Tomcat: WebSocket DoS with incomplete closing handshake Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version…Read More

Exit mobile version