Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2011-1582

Published: 20 May 2011

Apache Tomcat 7.0.12 and 7.0.13 processes the first request to a servlet without following security constraints that have been configured through annotations, which allows remote attackers to bypass intended access restrictions via HTTP requests. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-1088, CVE-2011-1183, and CVE-2011-1419.

Priority

Medium

Status

Package Release Status
tomcat6
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy Does not exist

lucid Not vulnerable
(tomcat 7 only)
maverick Not vulnerable
(tomcat 7 only)
natty Not vulnerable
(tomcat 7 only)
upstream Needs triage