Bug 715991 (CVE-2011-3190) - VUL-0: CVE-2011-3190: tomcat authentication bypass and information disclosure
Summary: VUL-0: CVE-2011-3190: tomcat authentication bypass and information disclosure
Status: RESOLVED FIXED
Alias: CVE-2011-3190
Product: SUSE Security Incidents
Classification: Novell Products
Component: General (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL:
Whiteboard: maint:released:sle10-sp4:43224 maint:...
Keywords:
Depends on:
Blocks:
 
Reported: 2011-09-05 14:35 UTC by Ludwig Nussel
Modified: 2014-07-17 09:49 UTC (History)
1 user (show)

See Also:
Found By: Other
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Ludwig Nussel 2011-09-05 14:35:41 UTC 
Your friendly security team received the following report via mitre.
Please respond ASAP.
The issue is public.

-------8<-------
======================================================
Name: CVE-2011-3190

Certain AJP protocol connector implementations in Apache Tomcat 7.0.0 through 7.0.20, 6.0.0 through 6.0.33, 5.5.0 through 5.5.33, and possibly other versions allow remote attackers to spoof AJP requests, bypass authentication, and obtain sensitive information by causing the connector to interpret a request body as a new request.


Reference: MISC: https://issues.apache.org/bugzilla/show_bug.cgi?id=51698
Reference: XF: http://xforce.iss.net/xforce/xfdb/69472
Reference: SECTRACK: http://www.securitytracker.com/id?1025993
Reference: BID: http://www.securityfocus.com/bid/49353
Reference: BUGTRAQ: http://www.securityfocus.com/archive/1/archive/1/519466/100/0/threaded
Reference: SECUNIA: http://secunia.com/advisories/45748
Comment 1 Michal Vyskocil 2011-09-15 14:17:50 UTC 
submitted fixed packages:

 sles9:  not vulnerable
 sles10: 15092
 sles11: 15094

 11.3: 82231
 11.4: 82232

factory: TODO
Comment 2 Bernhard Wiedemann 2011-09-16 08:41:06 UTC 
This is an autogenerated message for OBS integration:
This bug (715991) was mentioned in
https://build.opensuse.org/request/show/82231
https://build.opensuse.org/request/show/82232
Comment 3 Sebastian Krahmer 2011-10-11 13:03:54 UTC 
MaintenanceTracker-43033
Comment 4 Swamp Workflow Management 2011-10-11 17:56:21 UTC 
Update released for: tomcat5, tomcat5-admin-webapps, tomcat5-webapps
Products:
SLE-SDK 10-SP4 (i386, ia64, ppc, s390x, x86_64)
SLE-SERVER 10-SP4 (i386, ia64, ppc, s390x, x86_64)
Comment 5 Swamp Workflow Management 2011-10-11 19:00:08 UTC 
Update released for: tomcat5, tomcat5-admin-webapps, tomcat5-webapps
Products:
SLE-SAP-APL 10-SP3 (x86_64)
SLE-SDK 10-SP3 (i386, ia64, ppc, s390x, x86_64)
SLE-SERVER 10-SP3 (i386, ia64, ppc, s390x, x86_64)
SLE-SERVER 10-SP3-TERADATA (x86_64)
Comment 6 Swamp Workflow Management 2011-10-17 09:26:05 UTC 
Update released for: tomcat6, tomcat6-admin-webapps, tomcat6-docs-webapp, tomcat6-el-1_0-api, tomcat6-javadoc, tomcat6-jsp-2_1-api, tomcat6-lib, tomcat6-servlet-2_5-api, tomcat6-webapps
Products:
openSUSE 11.3 (i586)
openSUSE 11.4 (i586)
Comment 7 Sebastian Krahmer 2011-10-17 09:28:35 UTC 
done
Comment 8 Swamp Workflow Management 2011-10-17 15:35:17 UTC 
Update released for: tomcat6, tomcat6-admin-webapps, tomcat6-docs-webapp, tomcat6-javadoc, tomcat6-jsp-2_1-api, tomcat6-lib, tomcat6-servlet-2_5-api, tomcat6-webapps
Products:
SLE-SDK 11-SP1 (i386, ia64, ppc64, s390x, x86_64)
SUSE-MANAGER 1.2 (x86_64)
Comment 9 Bernhard Wiedemann 2011-10-17 21:00:09 UTC 
This is an autogenerated message for OBS integration:
This bug (715991) was mentioned in
https://build.opensuse.org/request/show/88290 Evergreen:11.2 / tomcat6
Comment 10 Bernhard Wiedemann 2011-10-19 11:00:32 UTC 
This is an autogenerated message for OBS integration:
This bug (715991) was mentioned in
https://build.opensuse.org/request/show/88690 Evergreen:11.1 / tomcat6