CLSA-2022-1670606563

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1670606563.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2022-1670606563
Upstream
Published
2022-12-09T17:22:43Z
Modified
2026-06-04T09:45:53.636110308Z
Summary
Fix CVE(s): CVE-2019-0221
Details
  • SECURITY UPDATE: The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS.
    • debian/patches/CVE-2019-0221.patch: Escape debug output to aid readability
    • CVE-2019-0221
References

Affected packages

TuxCare:Ubuntu:16.04
libservlet3.0-java

Package

Name
libservlet3.0-java
Purl
pkg:deb/tuxcare/libservlet3.0-java?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.68-1ubuntu0.4+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1670606563.json"
libservlet3.0-java-doc

Package

Name
libservlet3.0-java-doc
Purl
pkg:deb/tuxcare/libservlet3.0-java-doc?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.68-1ubuntu0.4+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1670606563.json"
libtomcat7-java

Package

Name
libtomcat7-java
Purl
pkg:deb/tuxcare/libtomcat7-java?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.68-1ubuntu0.4+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1670606563.json"
tomcat7

Package

Name
tomcat7
Purl
pkg:deb/tuxcare/tomcat7?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.68-1ubuntu0.4+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1670606563.json"
tomcat7-admin

Package

Name
tomcat7-admin
Purl
pkg:deb/tuxcare/tomcat7-admin?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.68-1ubuntu0.4+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1670606563.json"
tomcat7-common

Package

Name
tomcat7-common
Purl
pkg:deb/tuxcare/tomcat7-common?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.68-1ubuntu0.4+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1670606563.json"
tomcat7-docs

Package

Name
tomcat7-docs
Purl
pkg:deb/tuxcare/tomcat7-docs?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.68-1ubuntu0.4+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1670606563.json"
tomcat7-examples

Package

Name
tomcat7-examples
Purl
pkg:deb/tuxcare/tomcat7-examples?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.68-1ubuntu0.4+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1670606563.json"
tomcat7-user

Package

Name
tomcat7-user
Purl
pkg:deb/tuxcare/tomcat7-user?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.68-1ubuntu0.4+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1670606563.json"