CLSA-2024-1707420277

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1707420277.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2024-1707420277

Upstream

CVE-2023-46589

Published

2024-02-08T19:24:40Z

Modified

2026-06-04T09:47:24.381750332Z

Summary

Fix CVE(s): CVE-2023-46589

Details

SECURITY UPDATE: Incorrect parsing of HTTP trailer headers
- debian/patches/CVE-2023-46589.patch: Ensure IOException on request read always triggers error handling
- CVE-2023-46589
Internal tests:
- debian/patches/0100-stop-testing-if-a-failure-occurs.patch: Stop testing if a failure occurs
- debian/patches/0101-skipping-tests-incompatible-with-firewall.patch: Skipping tests incompatible with the firewall settings of the build system
- debian/test_certs/*, debian/source/include-binaries, debian/rules: Update the keystore files and certificates from the upstream branch 9.0.x to fix internal tests

References

https://errata.cloudlinux.com/ubuntu18-els/CLSA-2024-1707420277.html

Affected packages

TuxCare:Ubuntu:18.04

libtomcat9-embed-java

Package

Name: libtomcat9-embed-java
Purl: pkg:deb/tuxcare/libtomcat9-embed-java?distro=ubuntu-18.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.0.16-3ubuntu0.18.04.2+tuxcare.els4

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1707420277.json"

libtomcat9-java

Package

Name: libtomcat9-java
Purl: pkg:deb/tuxcare/libtomcat9-java?distro=ubuntu-18.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.0.16-3ubuntu0.18.04.2+tuxcare.els4

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1707420277.json"

tomcat9

Package

Name: tomcat9
Purl: pkg:deb/tuxcare/tomcat9?distro=ubuntu-18.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.0.16-3ubuntu0.18.04.2+tuxcare.els4

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1707420277.json"

tomcat9-admin

Package

Name: tomcat9-admin
Purl: pkg:deb/tuxcare/tomcat9-admin?distro=ubuntu-18.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.0.16-3ubuntu0.18.04.2+tuxcare.els4

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1707420277.json"

tomcat9-common

Package

Name: tomcat9-common
Purl: pkg:deb/tuxcare/tomcat9-common?distro=ubuntu-18.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.0.16-3ubuntu0.18.04.2+tuxcare.els4

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1707420277.json"

tomcat9-docs

Package

Name: tomcat9-docs
Purl: pkg:deb/tuxcare/tomcat9-docs?distro=ubuntu-18.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.0.16-3ubuntu0.18.04.2+tuxcare.els4

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1707420277.json"

tomcat9-examples

Package

Name: tomcat9-examples
Purl: pkg:deb/tuxcare/tomcat9-examples?distro=ubuntu-18.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.0.16-3ubuntu0.18.04.2+tuxcare.els4

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1707420277.json"

tomcat9-user

Package

Name: tomcat9-user
Purl: pkg:deb/tuxcare/tomcat9-user?distro=ubuntu-18.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

9.0.16-3ubuntu0.18.04.2+tuxcare.els4

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1707420277.json"