These are all security issues fixed in the tomcat10-10.1.14-1.1 package on the GA media of openSUSE Tumbleweed.
{ "binaries": [ { "tomcat10-servlet-6_0-api": "10.1.14-1.1", "tomcat10-lib": "10.1.14-1.1", "tomcat10-el-5_0-api": "10.1.14-1.1", "tomcat10-webapps": "10.1.14-1.1", "tomcat10-doc": "10.1.14-1.1", "tomcat10-docs-webapp": "10.1.14-1.1", "tomcat10": "10.1.14-1.1", "tomcat10-jsp-3_1-api": "10.1.14-1.1", "tomcat10-admin-webapps": "10.1.14-1.1", "tomcat10-jsvc": "10.1.14-1.1", "tomcat10-embed": "10.1.14-1.1" } ] }