A bug was discovered in the error handling of the send file code for the NIO HTTP connector. This led to the current Processor object being added to the Processor cache multiple times allowing information leakage between requests including, and not limited to, session ID and the response body.
Platform | Package | Release Date | Advisory |
---|---|---|---|
Amazon Linux 1 | tomcat6 | 2017-03-29 16:48 | ALAS-2017-810 |
Amazon Linux 1 | tomcat7 | 2017-02-14 12:00 | ALAS-2017-796 |
Amazon Linux 1 | tomcat8 | 2017-02-14 12:00 | ALAS-2017-796 |
Score Type | Score | Vector | |
---|---|---|---|
Amazon Linux | CVSSv2 | 4.3 | AV:N/AC:M/Au:N/C:P/I:N/A:N |
Amazon Linux | CVSSv3 | 7.5 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
NVD | CVSSv2 | 5.0 | AV:N/AC:L/Au:N/C:P/I:N/A:N |
NVD | CVSSv3 | 7.5 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |