USN-976-1: Tomcat vulnerability
25 August 2010
- tomcat6 -
It was discovered that Tomcat incorrectly handled invalid Transfer-Encoding
headers. A remote attacker could send specially crafted requests containing
invalid headers to the server and cause a denial of service, or possibly
obtain sensitive information from other requests.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.