FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Apache Tomcat -- Multiple Vulnerabilities

Affected packages
tomcat7 < 7.0.105
tomcat85 < 8.5.57
tomcat9 < 9.0.37
tomcat-devel < 10.0.0.M7

Details

VuXML ID 6a72eff7-ccd6-11ea-9172-4c72b94353b5
Discovery 2020-07-05
Entry 2020-07-23
Modified 2020-07-23

The Apache Software Foundation reports:

An h2c direct connection did not release the HTTP/1.1 processor after the upgrade to HTTP/2. If a sufficient number of such requests were made, an OutOfMemoryException could occur leading to a denial of service.

The payload length in a WebSocket frame was not correctly validated. Invalid payload lengths could trigger an infinite loop. Multiple requests with invalid payload lengths could lead to a denial of service.

A specially crafted sequence of HTTP/2 requests could trigger high CPU usage for several seconds. If a sufficient number of such requests were made on concurrent HTTP/2 connections, the server could become unresponsive.

References

CVE Name CVE-2020-11996
CVE Name CVE-2020-13934
CVE Name CVE-2020-13935
URL https://tomcat.apache.org/security-10.html
URL https://tomcat.apache.org/security-7.html
URL https://tomcat.apache.org/security-8.html
URL https://tomcat.apache.org/security-9.html