VDB
MGASA-2023-0138
MGASA-2023-0138
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Updated tomcat packages fix security vulnerability
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mageia:8 | tomcat | 0, 0 |
Timeline
- Apr 15, 2023 CVE Published
- Apr 16, 2026 CVE Updated
- May 1, 2026 Distribution Patch
- May 1, 2026 Security Advisory
References
- https://advisories.mageia.org/MGASA-2023-0138.html advisory
- https://bugs.mageia.org/show_bug.cgi?id=30113 report
- https://lists.suse.com/pipermail/sle-security-updates/2022-March/010339.html url
- https://lists.suse.com/pipermail/sle-security-updates/2022-April/010734.html url
- https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.65 url
- https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.62 url
- https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.68 url
- https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.69 url
- https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.71 url
- https://lists.suse.com/pipermail/sle-security-updates/2023-March/014018.html url
- https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.72 url
- https://www.debian.org/lts/security/2022/dla-3160 advisory
- https://www.debian.org/security/2022/dsa-5265 advisory