Debian Security Update DSA-4118 tomcat-native - security update

Thread starter LinuxBot
Start date Feb 17, 2018

LinuxBot

Member

Feb 17, 2018

#1

Jonas Klempel reported that tomcat-native, a library giving Tomcat access to the Apache Portable Runtime (APR) library's network connection (socket) implementation and random-number generator, does not properly handle fields longer than 127 bytes when parsing the AIA-Extension field of a client certificate. If OCSP checks are used, this could result in client certificates that should have been rejected to be accepted.

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6281-1 gnutls28 - security update

Replies: 0

Views: 87

May 20, 2026

LinuxBot

Debian Security Update DSA-6263-1 libpng1.6 - security update

Replies: 0

Views: 66

May 11, 2026

LinuxBot

Debian Security Update DSA-6140-1 gnutls28 - security update

Replies: 0

Views: 161

Feb 18, 2026

LinuxBot

Debian Security Update DSA-6189-1 libpng1.6 - security update

Replies: 0

Views: 116

Apr 1, 2026

LinuxBot

Debian Security Update DSA-6138-1 libpng1.6 - security update

Replies: 0

Views: 136

Feb 18, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Staff online

f33dm3bits
Super Moderator
KGIII
Administrator

Members online

Total: 2,535 (members: 6, guests: 2,529)

Latest posts

Hellooooo
- Latest: KGIII
- 6 minutes ago
Member Introductions
New to the whole Linux scene, have heard really great things figured I'd maybe give it a crack?
- Latest: Perpetual Padawan
- 37 minutes ago
Getting Started
Post a screenshot of your Desktop
- Latest: PuppyHome
- Today at 6:27 PM
Desktop
First-time #Mint #Penguin Here!
- Latest: Perpetual Padawan
- Today at 6:03 PM
Mint
J
Ubuntu 26.04 Dock crashes
- Latest: Jens55
- Today at 5:13 PM
Ubuntu forum

Top