PublicDateAtUSN: 2016-10-28
Candidate: CVE-2016-6796
PublicDate: 2017-08-11 02:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6796
 http://markmail.org/message/hynaeawxxhpvvctu?q=list:org.apache.tomcat.announce/
 https://ubuntu.com/security/notices/USN-3177-1
 https://ubuntu.com/security/notices/USN-4557-1
Description:
 A malicious web application running on Apache Tomcat 9.0.0.M1 to 9.0.0.M9,
 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45
 was able to bypass a configured SecurityManager via manipulation of the
 configuration parameters for the JSP Servlet.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to: mdeslaur
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N [7.5 HIGH]
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N [7.5 HIGH]

Patches_tomcat7:
 upstream: https://svn.apache.org/viewvc?view=rev&rev=1758495
upstream_tomcat7: released (7.0.72)
precise_tomcat7: ignored (reached end-of-life)
precise/esm_tomcat7: DNE (precise was needed)
trusty_tomcat7: released (7.0.52-1ubuntu0.8)
trusty/esm_tomcat7: released (7.0.52-1ubuntu0.8)
vivid/stable-phone-overlay_tomcat7: DNE
vivid/ubuntu-core_tomcat7: DNE
xenial_tomcat7: released (7.0.68-1ubuntu0.3)
yakkety_tomcat7: ignored (reached end-of-life)
zesty_tomcat7: ignored (reached end-of-life)
artful_tomcat7: ignored (reached end-of-life)
bionic_tomcat7: not-affected
cosmic_tomcat7: not-affected
disco_tomcat7: DNE
eoan_tomcat7: DNE
focal_tomcat7: DNE
groovy_tomcat7: DNE
hirsute_tomcat7: DNE
impish_tomcat7: DNE
jammy_tomcat7: DNE
devel_tomcat7: DNE

Patches_tomcat6:
 upstream: https://svn.apache.org/viewvc?view=rev&rev=1758496
upstream_tomcat6: released (6.0.47)
precise_tomcat6: released (6.0.35-1ubuntu3.9)
precise/esm_tomcat6: released (6.0.35-1ubuntu3.9)
trusty_tomcat6: ignored (out of standard support)
trusty/esm_tomcat6: needed
vivid/stable-phone-overlay_tomcat6: DNE
vivid/ubuntu-core_tomcat6: DNE
xenial_tomcat6: released (6.0.45+dfsg-1ubuntu0.1)
yakkety_tomcat6: DNE
zesty_tomcat6: DNE
artful_tomcat6: DNE
bionic_tomcat6: DNE
cosmic_tomcat6: DNE
disco_tomcat6: DNE
eoan_tomcat6: DNE
focal_tomcat6: DNE
groovy_tomcat6: DNE
hirsute_tomcat6: DNE
impish_tomcat6: DNE
jammy_tomcat6: DNE
devel_tomcat6: DNE

Patches_tomcat8:
 upstream: https://svn.apache.org/viewvc?view=rev&rev=1758494
upstream_tomcat8: released (8.0.37)
precise_tomcat8: DNE
precise/esm_tomcat8: DNE
trusty_tomcat8: DNE
trusty/esm_tomcat8: DNE
vivid/stable-phone-overlay_tomcat8: DNE
vivid/ubuntu-core_tomcat8: DNE
xenial_tomcat8: released (8.0.32-1ubuntu1.3)
esm-infra/xenial_tomcat8: released (8.0.32-1ubuntu1.3)
yakkety_tomcat8: not-affected (8.0.37-1)
zesty_tomcat8: not-affected (8.0.38-2)
artful_tomcat8: not-affected (8.0.38-2)
bionic_tomcat8: not-affected (8.0.38-2)
cosmic_tomcat8: not-affected (8.0.38-2)
disco_tomcat8: DNE
eoan_tomcat8: DNE
focal_tomcat8: DNE
groovy_tomcat8: DNE
hirsute_tomcat8: DNE
impish_tomcat8: DNE
jammy_tomcat8: DNE
devel_tomcat8: DNE