Release date:
2026-05-07 05:13:06 UTC
Description:
- CVE-2025-48988: limit number and header size of multipart parts
- CVE-2025-52520: use Math.addExact and long postSize to prevent overflow
bypass of maxPostSize during multipart upload
Updated packages:
-
tomcat-9.0.87-3.el9_6.3.tuxcare.els6.noarch.rpm
sha:e106b74b3452e6441da0e7b4a5d84a5eca1945b2fb7fb6d4f604992d2645e08e
-
tomcat-admin-webapps-9.0.87-3.el9_6.3.tuxcare.els6.noarch.rpm
sha:73d0b67668604c7d1cabf0ca930303df2023138a36557e165b86d9c045142cc3
-
tomcat-docs-webapp-9.0.87-3.el9_6.3.tuxcare.els6.noarch.rpm
sha:9d6661309ec2076924e3090965860d843a4d666c92f60dc44fcd7a8dfd21a41e
-
tomcat-el-3.0-api-9.0.87-3.el9_6.3.tuxcare.els6.noarch.rpm
sha:58f57565c109a97b6bbfb8a78ae4ce13df58010be42c861eb18e484fd5b25fcd
-
tomcat-jsp-2.3-api-9.0.87-3.el9_6.3.tuxcare.els6.noarch.rpm
sha:7b3b82d0be43618daa28e26d0e30bba67dbc62e848b195448f36d89cb2438f68
-
tomcat-lib-9.0.87-3.el9_6.3.tuxcare.els6.noarch.rpm
sha:e7a76806775dd095b5d712f05ec78e4e21a0952438d4fbbd8ec94a5ea7cda201
-
tomcat-servlet-4.0-api-9.0.87-3.el9_6.3.tuxcare.els6.noarch.rpm
sha:5c373aaedf5411ab65027d0cd7dfbf32d23aa084df6a46d53671b69af14d4b5d
-
tomcat-webapps-9.0.87-3.el9_6.3.tuxcare.els6.noarch.rpm
sha:c2bb2fcccc6275ce71013d2d43a3248fcd816dd29c23fc68f9a016068b0038b9
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
