CLSA-2026-1777446601

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1777446601.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1777446601

Upstream

CVE-2020-13935

Published

2026-04-29T07:10:05Z

Modified

2026-06-04T09:47:10.966670446Z

Summary

Fix CVE(s): CVE-2020-13935

Details

SECURITY UPDATE: denial of service via crafted WebSocket frame with a 64-bit payload length whose most significant bit is set. The extended payload length read in WsFrameBase.processRemainingHeader() was assembled into a Java long without validation. With bit 63 set the value became negative, which the consumer then used as a loop bound, causing an infinite loop and exhausting CPU on the server thread. Affects Apache Tomcat 7.0.0 to 7.0.104, 8.5.0 to 8.5.56, 9.0.0.M1 to 9.0.36, and 10.0.0-M1 to 10.0.0-M6.
- debian/patches/CVE-2020-13935.patch: validate the 64-bit payload length in processRemainingHeader() and reject frames with a negative value by throwing a WsIOException carrying a PROTOCOL_ERROR close reason; add the wsFrame.payloadMsbInvalid message to LocalStrings.properties. Also fold the companion fix 4c04982870 to apply the same validation to the legacy org/apache/catalina/websocket/WsFrame parser (still packaged in catalina.jar via WebSocketServlet), and the regression follow-up 34d19fbe24 in WsFrameBase.byteArrayToLong() (0xFF -> 0xFFL) that prevents silent corruption of payload lengths >= 4 bytes from int-shift promotion. Additionally fold b517002093 to apply the same 0xFF -> 0xFFL fix to the parallel helper Conversions.byteArrayToLong() in java/org/apache/catalina/util/Conversions.java, which is the helper used by the legacy WsFrame parser; without it the new < 0 check in the legacy parser would falsely reject legitimate large frames. Backport of upstream commits f9f75c14, 34d19fbe24, 4c04982870 and b517002093 (https://github.com/apache/tomcat/commit/f9f75c14 https://github.com/apache/tomcat/commit/34d19fbe24 https://github.com/apache/tomcat/commit/4c04982870 https://github.com/apache/tomcat/commit/b517002093)
- CVE-2020-13935

References

https://errata.tuxcare.com/els_os/ubuntu16.04els/CLSA-2026-1777446601.html

Affected packages

TuxCare:Ubuntu:16.04

libservlet3.0-java

Package

Name: libservlet3.0-java
Purl: pkg:deb/tuxcare/libservlet3.0-java?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.68-1ubuntu0.4+tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1777446601.json"

libservlet3.0-java-doc

Package

Name: libservlet3.0-java-doc
Purl: pkg:deb/tuxcare/libservlet3.0-java-doc?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.68-1ubuntu0.4+tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1777446601.json"

libtomcat7-java

Package

Name: libtomcat7-java
Purl: pkg:deb/tuxcare/libtomcat7-java?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.68-1ubuntu0.4+tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1777446601.json"

tomcat7

Package

Name: tomcat7
Purl: pkg:deb/tuxcare/tomcat7?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.68-1ubuntu0.4+tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1777446601.json"

tomcat7-admin

Package

Name: tomcat7-admin
Purl: pkg:deb/tuxcare/tomcat7-admin?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.68-1ubuntu0.4+tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1777446601.json"

tomcat7-common

Package

Name: tomcat7-common
Purl: pkg:deb/tuxcare/tomcat7-common?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.68-1ubuntu0.4+tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1777446601.json"

tomcat7-docs

Package

Name: tomcat7-docs
Purl: pkg:deb/tuxcare/tomcat7-docs?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.68-1ubuntu0.4+tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1777446601.json"

tomcat7-examples

Package

Name: tomcat7-examples
Purl: pkg:deb/tuxcare/tomcat7-examples?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.68-1ubuntu0.4+tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1777446601.json"

tomcat7-user

Package

Name: tomcat7-user
Purl: pkg:deb/tuxcare/tomcat7-user?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.68-1ubuntu0.4+tuxcare.els7

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2026-1777446601.json"