{"id":"MGASA-2020-0054","summary":"Updated tomcat packages fix security vulnerabilities","details":"When Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47, 7.0.0 and 7.0.97\nis configured with the JMX Remote Lifecycle Listener, a local attacker\nwithout access to the Tomcat process or configuration files is able to\nmanipulate the RMI registry to perform a man-in-the-middle attack to\ncapture user names and passwords used to access the JMX interface. The\nattacker can then use these credentials to access the JMX interface and\ngain complete control over the Tomcat instance. (CVE-2019-12418)\n\nWhen using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29,\n8.5.0 to 8.5.49 and 7.0.0 to 7.0.98 there was a narrow window where an\nattacker could perform a session fixation attack. The window was\nconsidered too narrow for an exploit to be practical but, erring on the\nside of caution, this issue has been treated as a security\nvulnerability. (CVE-2019-17563)\n","modified":"2026-04-16T04:44:34.596512034Z","published":"2020-01-28T07:52:40Z","upstream":["CVE-2019-12418","CVE-2019-17563"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2020-0054.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=25987"},{"type":"WEB","url":"https://www.debian.org/security/2019/dsa-4596"},{"type":"WEB","url":"http://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.29"},{"type":"WEB","url":"http://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.30"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/QKC3AMZQVWY34PC24RYAAO4N57HWS6QG/"},{"type":"WEB","url":"http://lists.suse.com/pipermail/sle-security-updates/2020-January/006307.html"}],"affected":[{"package":{"name":"tomcat","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/tomcat?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.0.30-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2020-0054.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}