Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:23050

Опубликовано: 12 дек. 2025
Источник: rocky
Оценка: Important

Описание

Important: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies.

Security Fix(es):

  • tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve (CVE-2025-31651)

  • tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Denial of service (CVE-2025-61795)

  • tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE (CVE-2025-55752)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
tomcatnoarch3.el10_1.1tomcat-10.1.36-3.el10_1.1.noarch.rpm
tomcatnoarch3.el10_1.1tomcat-10.1.36-3.el10_1.1.noarch.rpm
tomcatnoarch3.el10_1.1tomcat-10.1.36-3.el10_1.1.noarch.rpm
tomcatnoarch3.el10_1.1tomcat-10.1.36-3.el10_1.1.noarch.rpm
tomcat-admin-webappsnoarch3.el10_1.1tomcat-admin-webapps-10.1.36-3.el10_1.1.noarch.rpm
tomcat-admin-webappsnoarch3.el10_1.1tomcat-admin-webapps-10.1.36-3.el10_1.1.noarch.rpm
tomcat-admin-webappsnoarch3.el10_1.1tomcat-admin-webapps-10.1.36-3.el10_1.1.noarch.rpm
tomcat-admin-webappsnoarch3.el10_1.1tomcat-admin-webapps-10.1.36-3.el10_1.1.noarch.rpm
tomcat-docs-webappnoarch3.el10_1.1tomcat-docs-webapp-10.1.36-3.el10_1.1.noarch.rpm
tomcat-docs-webappnoarch3.el10_1.1tomcat-docs-webapp-10.1.36-3.el10_1.1.noarch.rpm

Показывать по

Связанные CVE

CVE-2025-31651
CVE-2025-55752
CVE-2025-61795

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2025-23050

oracle-oval
10 дней назад

ELSA-2025-23050: tomcat security update (IMPORTANT)

rocky логотип

RLSA-2025:23052

rocky
7 дней назад

Important: tomcat9 security update

rocky логотип

RLSA-2025:23049

rocky
8 дней назад

Important: tomcat security update

rocky логотип

RLSA-2025:23048

rocky
6 дней назад

Important: tomcat security update

oracle-oval логотип

ELSA-2025-23052

oracle-oval
10 дней назад

ELSA-2025-23052: tomcat9 security update (IMPORTANT)