VulnerableCode Package Details - pkg:deb/ubuntu/tomcat7@7.0.68-1ubuntu0.1

Vulnerabilities affecting this package (11)

Vulnerability	Summary	Fixed by
VCID-3c66-9v5f-aaap Aliases: CVE-2016-9774	The postinst script in the tomcat6 package before 6.0.45+dfsg-1~deb7u4 on Debian wheezy, before 6.0.35-1ubuntu3.9 on Ubuntu 12.04 LTS and on Ubuntu 14.04 LTS; the tomcat7 package before 7.0.28-4+deb7u8 on Debian wheezy, before 7.0.56-3+deb8u6 on Debian jessie, before 7.0.52-1ubuntu0.8 on Ubuntu 14.04 LTS, and on Ubuntu 12.04 LTS, 16.04 LTS, and 16.10; and the tomcat8 package before 8.0.14-1+deb8u5 on Debian jessie, before 8.0.32-1ubuntu1.3 on Ubuntu 16.04 LTS, before 8.0.37-1ubuntu0.1 on Ubuntu 16.10, and before 8.0.38-2ubuntu1 on Ubuntu 17.04 might allow local users with access to the tomcat account to obtain sensitive information or gain root privileges via a symlink attack on the Catalina localhost directory.	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.
VCID-3kmg-uhrj-aaaq Aliases: CVE-2016-6797 GHSA-q6x7-f33r-3wxx	The ResourceLinkFactory implementation in Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 did not limit web application access to global JNDI resources to those resources explicitly linked to the web application. Therefore, it was possible for a web application to access any global JNDI resource whether an explicit ResourceLink had been configured or not.	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.
VCID-3spb-m822-aaab Aliases: CVE-2016-6794 GHSA-2rvf-329f-p99g	System Property Disclosure in Apache Tomcat	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.
VCID-4k6k-v1hy-aaap Aliases: CVE-2016-9775	The postrm script in the tomcat6 package before 6.0.45+dfsg-1~deb7u3 on Debian wheezy, before 6.0.45+dfsg-1~deb8u1 on Debian jessie, before 6.0.35-1ubuntu3.9 on Ubuntu 12.04 LTS and on Ubuntu 14.04 LTS; the tomcat7 package before 7.0.28-4+deb7u7 on Debian wheezy, before 7.0.56-3+deb8u6 on Debian jessie, before 7.0.52-1ubuntu0.8 on Ubuntu 14.04 LTS, and on Ubuntu 12.04 LTS, 16.04 LTS, and 16.10; and the tomcat8 package before 8.0.14-1+deb8u5 on Debian jessie, before 8.0.32-1ubuntu1.3 on Ubuntu 16.04 LTS, before 8.0.37-1ubuntu0.1 on Ubuntu 16.10, and before 8.0.38-2ubuntu1 on Ubuntu 17.04 might allow local users with access to the tomcat account to gain root privileges via a setgid program in the Catalina directory, as demonstrated by /etc/tomcat8/Catalina/attack.	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.
VCID-9pf5-786z-aaaj Aliases: CVE-2016-1240	The Tomcat init script in the tomcat7 package before 7.0.56-3+deb8u4 and tomcat8 package before 8.0.14-1+deb8u3 on Debian jessie and the tomcat6 and libtomcat6-java packages before 6.0.35-1ubuntu3.8 on Ubuntu 12.04 LTS, the tomcat7 and libtomcat7-java packages before 7.0.52-1ubuntu0.7 on Ubuntu 14.04 LTS, and tomcat8 and libtomcat8-java packages before 8.0.32-1ubuntu1.2 on Ubuntu 16.04 LTS allows local users with access to the tomcat account to gain root privileges via a symlink attack on the Catalina log file, as demonstrated by /var/log/tomcat7/catalina.out.	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.
VCID-bwx4-6bsd-aaaf Aliases: CVE-2016-0762 GHSA-wxcp-f2c8-x6xv	Information Exposure Through Timing Discrepancy The Realm implementations in Apache Tomcat does not process the supplied password if the supplied user name did not exist which makes it possible to use a timing attack to determine valid user names.	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.
VCID-msaf-115m-aaaq Aliases: CVE-2016-6796 GHSA-3mjp-p938-4329	A malicious web application running on Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 was able to bypass a configured SecurityManager via manipulation of the configuration parameters for the JSP Servlet.	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.
VCID-p378-4jg4-aaam Aliases: CVE-2016-8745 GHSA-w3j5-q8f2-3cqq	Information Exposure A bug in the error handling of the NIO HTTP connector in Apache Tomcat resulted in the current Processor object being added to the Processor cache multiple times. This in turn meant that the same Processor could be used for concurrent requests. Sharing a Processor can result in information leakage.	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.
VCID-q1t4-rzf5-aaac Aliases: CVE-2016-6816 GHSA-jc7p-5r39-9477	The code in Apache Tomcat 9.0.0.M1 to 9.0.0.M11, 8.5.0 to 8.5.6, 8.0.0.RC1 to 8.0.38, 7.0.0 to 7.0.72, and 6.0.0 to 6.0.47 that parsed the HTTP request line permitted invalid characters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the HTTP response. By manipulating the HTTP response the attacker could poison a web-cache, perform an XSS attack and/or obtain sensitive information from requests other then their own.	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.
VCID-sc5t-244h-aaas Aliases: CVE-2016-8735 GHSA-cw54-59pw-4g8c	Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.
VCID-szah-tgau-aaad Aliases: CVE-2016-5018 GHSA-4v3g-g84w-hv7r	Improper Access Control In Apache Tomcat, a malicious web application was able to bypass a configured `SecurityManager` via a Tomcat utility method that was accessible to web applications.	7.0.68-1ubuntu0.3 Affected by 0 other vulnerabilities.

Next non-vulnerable version	7.0.68-1ubuntu0.3
Latest non-vulnerable version	7.0.68-1ubuntu0.3
Risk	10.0

Vulnerability	Summary	Aliases
VCID-c3ze-ganc-aaah	It was discovered that a programming error in the processing of HTTPS requests in the Apache Tomcat servlet and JSP engine may result in denial of service via an infinite loop. The denial of service is easily achievable as a consequence of backporting a CVE-2016-6816 fix but not backporting the fix for Tomcat bug 57544. Distributions affected by this backporting issue include Debian (before 7.0.56-3+deb8u8 and 8.0.14-1+deb8u7 in jessie) and Ubuntu.	CVE-2017-6056
VCID-qmjs-369r-aaar	High severity vulnerability that affects commons-fileupload:commons-fileupload	CVE-2016-3092 GHSA-fvm3-cfvj-gxqq