Bug 791424 (CVE-2012-5886) - VUL-0: CVE-2012-5886: tomcat: authentication caching weakness
Summary: VUL-0: CVE-2012-5886: tomcat: authentication caching weakness
Status: RESOLVED FIXED
Alias: CVE-2012-5886
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P2 - High : Normal
Target Milestone: ---
Deadline: 2012-12-12
Assignee: Security Team bot
QA Contact: Security Team bot
URL:
Whiteboard: maint:released:sle10-sp3:50427 maint:...
Keywords:
Depends on:
Blocks:
 
Reported: 2012-11-27 12:24 UTC by Sebastian Krahmer
Modified: 2014-07-17 09:44 UTC (History)
2 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Sebastian Krahmer 2012-11-27 12:24:23 UTC 
Name: CVE-2012-5886

The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x
before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 caches information
about the authenticated user within the session state, which makes it easier
for remote attackers to bypass authentication via vectors related to the
session ID.



Reference: CONFIRM: http://tomcat.apache.org/security-7.html
Reference: CONFIRM: http://tomcat.apache.org/security-6.html
Reference: CONFIRM: http://tomcat.apache.org/security-5.html
Reference: CONFIRM:
http://svn.apache.org/viewvc?view=revision&revision=1392248
Reference: CONFIRM:
http://svn.apache.org/viewvc?view=revision&revision=1380829
Reference: CONFIRM:
http://svn.apache.org/viewvc?view=revision&revision=1377807
Comment 1 Swamp Workflow Management 2012-11-28 10:53:16 UTC 
The SWAMPID for this issue is 50301.
This issue was rated as moderate.
Please submit fixed packages until 2012-12-12.
When done, please reassign the bug to security-team@suse.de.
Patchinfo will be handled by security team.
Comment 2 Bernhard Wiedemann 2012-12-04 09:00:33 UTC 
This is an autogenerated message for OBS integration:
This bug (791424) was mentioned in
https://build.opensuse.org/request/show/144019 Maintenance /
Comment 3 Bernhard Wiedemann 2012-12-07 13:01:01 UTC 
This is an autogenerated message for OBS integration:
This bug (791424) was mentioned in
https://build.opensuse.org/request/show/144552 Maintenance /
Comment 4 Bernhard Wiedemann 2012-12-10 11:00:24 UTC 
This is an autogenerated message for OBS integration:
This bug (791424) was mentioned in
https://build.opensuse.org/request/show/144937 Maintenance /
Comment 5 Bernhard Wiedemann 2012-12-10 13:00:30 UTC 
This is an autogenerated message for OBS integration:
This bug (791424) was mentioned in
https://build.opensuse.org/request/show/144949 Maintenance /
Comment 6 Michal Vyskocil 2012-12-10 13:22:30 UTC 
submitted,

see https://bugzilla.novell.com/show_bug.cgi?id=791426#c11
Comment 7 Bernhard Wiedemann 2012-12-10 14:00:21 UTC 
This is an autogenerated message for OBS integration:
This bug (791424) was mentioned in
https://build.opensuse.org/request/show/144953 Maintenance /
Comment 8 Bernhard Wiedemann 2012-12-10 16:00:31 UTC 
This is an autogenerated message for OBS integration:
This bug (791424) was mentioned in
https://build.opensuse.org/request/show/144989 Maintenance / 
https://build.opensuse.org/request/show/144990 Maintenance /
Comment 9 Bernhard Wiedemann 2012-12-19 16:00:23 UTC 
This is an autogenerated message for OBS integration:
This bug (791424) was mentioned in
https://build.opensuse.org/request/show/145902 Maintenance /
Comment 10 Swamp Workflow Management 2012-12-27 16:09:02 UTC 
openSUSE-SU-2012:1700-1: An update that fixes 10 vulnerabilities is now available.

Category: security (moderate)
Bug References: 789406,791423,791424,791426,791679,793391,793394
CVE References: CVE-2009-2693,CVE-2009-2901,CVE-2009-2902,CVE-2012-2733,CVE-2012-3546,CVE-2012-4431,CVE-2012-5568,CVE-2012-5885,CVE-2012-5886,CVE-2012-5887
Sources used:
openSUSE 12.1 (src):    libtcnative-1-0-1.3.3-3.7.1, tomcat6-6.0.33-3.7.1
Comment 11 Swamp Workflow Management 2012-12-27 16:10:26 UTC 
openSUSE-SU-2012:1701-1: An update that fixes 10 vulnerabilities is now available.

Category: security (moderate)
Bug References: 779538,789406,791423,791424,791426,791679,793391,793394
CVE References: CVE-2009-2693,CVE-2009-2901,CVE-2009-2902,CVE-2012-2733,CVE-2012-3546,CVE-2012-4431,CVE-2012-5568,CVE-2012-5885,CVE-2012-5886,CVE-2012-5887
Sources used:
openSUSE 12.2 (src):    tomcat-7.0.27-2.9.1
Comment 12 Swamp Workflow Management 2013-02-01 10:05:15 UTC 
Update released for: tomcat5, tomcat5-admin-webapps, tomcat5-webapps
Products:
SLE-SERVER 10-SP3-TERADATA (x86_64)
Comment 13 Swamp Workflow Management 2013-02-01 11:50:18 UTC 
Update released for: tomcat6, tomcat6-admin-webapps, tomcat6-docs-webapp, tomcat6-javadoc, tomcat6-jsp-2_1-api, tomcat6-lib, tomcat6-servlet-2_5-api, tomcat6-webapps
Products:
SLE-SERVER 11-SP1-TERADATA (x86_64)
SUSE-MANAGER 1.2 (x86_64)
Comment 14 Swamp Workflow Management 2013-02-01 12:33:00 UTC 
Update released for: tomcat6, tomcat6-admin-webapps, tomcat6-docs-webapp, tomcat6-javadoc, tomcat6-jsp-2_1-api, tomcat6-lib, tomcat6-servlet-2_5-api, tomcat6-webapps
Products:
SLE-SERVER 11-SP2 (i386, ia64, ppc64, s390x, x86_64)
SLES4VMWARE 11-SP2 (i386, x86_64)
Comment 15 Swamp Workflow Management 2013-02-01 13:08:21 UTC 
Update released for: tomcat5, tomcat5-admin-webapps, tomcat5-webapps
Products:
SLE-SDK 10-SP4 (i386, ia64, ppc, s390x, x86_64)
SLE-SERVER 10-SP4 (i386, ia64, ppc, s390x, x86_64)
Comment 16 Marcus Meissner 2013-02-04 14:14:53 UTC 
released
Comment 17 Bernhard Wiedemann 2013-08-28 06:00:29 UTC 
This is an autogenerated message for OBS integration:
This bug (791424) was mentioned in
https://build.opensuse.org/request/show/196597 Evergreen:11.2 / tomcat6
Comment 18 Bernhard Wiedemann 2013-09-11 06:01:21 UTC 
This is an autogenerated message for OBS integration:
This bug (791424) was mentioned in
https://build.opensuse.org/request/show/198409 Evergreen:11.2 / tomcat6