Bug 1078677 - (CVE-2017-15706) VUL-1: CVE-2017-15706: tomcat: Incorrect documentation of CGI Servlet search algorithm may lead to misconfiguration
(CVE-2017-15706)
VUL-1: CVE-2017-15706: tomcat: Incorrect documentation of CGI Servlet search ...
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P4 - Low : Minor
: ---
Assigned To: Matei Albu
Security Team bot
https://smash.suse.de/issue/199260/
CVSSv3:SUSE:CVE-2017-15706:0.0:(AV:N/...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2018-02-01 06:03 UTC by Marcus Meissner
Modified: 2019-06-06 11:44 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2018-02-01 06:03:21 UTC
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15706
https://lists.apache.org/thread.html/e1ef853fc0079cdb55befbd2dac042934e49288b476d5f6a649e5da2@%3Cannounce.tomcat.apache.org%3E

From: Mark Thomas <m...@apache.org>
To: Tomcat Users List <u...@tomcat.apache.org>
CC: Tomcat Developers List <d...@tomcat.apache.org>, an...@apache.org, "a...@tomcat.apache.org" <a...@tomcat.apache.org>
Subject: [SECURITY] CVE-2017-15706 Apache Tomcat Incorrectly documented CGI search algorithm
Date: 2018/01/31 10:22:29
List: announce@tomcat.apache.org

CVE-2017-15706 Apache Tomcat Incorrectly documented CGI search algorithm

Severity: Low

Vendor: The Apache Software Foundation

Versions Affected:
Apache Tomcat 9.0.0.M22 to 9.0.1
Apache Tomcat 8.5.16 to 8.5.23
Apache Tomcat 8.0.45 to 8.0.47
Apache Tomcat 7.0.79 to 7.0.82

Description:
As part of the fix for bug 61201, the description of the search
algorithm used by the CGI Servlet to identify which script to execute
was updated. The update was not correct. As a result, some scripts may
have failed to execute as expected and other scripts may have been
executed unexpectedly.
Note that the behaviour of the CGI servlet has remained unchanged in
this regard. It is only the documentation of the behaviour that was
wrong and has been corrected.

Mitigation:
Users of the affected versions should review the CGI documentation
from one of the following versions and ensure that the described CGI
search algorithm matches their expectation:
- Apache Tomcat 9.0.2 or later
- Apache Tomcat 8.5.24 or later
- Apache Tomcat 8.0.48 or later
- Apache Tomcat 7.0.84 or later
  (Apache Tomcat 7.0.83 has the fix but was not released)

Credit:
This issue was reported responsibly to the Apache Tomcat Security Team
by Michael Grenier.

History:
2018-01-31 Original advisory

References:
[1] http://tomcat.apache.org/security-9.html
[2] http://tomcat.apache.org/security-8.html
[3] http://tomcat.apache.org/security-7.html
Comment 1 Swamp Workflow Management 2018-03-26 13:19:13 UTC
SUSE-SU-2018:0817-1: An update that fixes three vulnerabilities is now available.

Category: security (moderate)
Bug References: 1078677,1082480,1082481
CVE References: CVE-2017-15706,CVE-2018-1304,CVE-2018-1305
Sources used:
SUSE Linux Enterprise Server for Raspberry Pi 12-SP2 (src):    tomcat-8.0.50-29.8.2
SUSE Linux Enterprise Server 12-SP3 (src):    tomcat-8.0.50-29.8.2
SUSE Linux Enterprise Server 12-SP2 (src):    tomcat-8.0.50-29.8.2
Comment 2 Swamp Workflow Management 2018-03-29 22:07:57 UTC
openSUSE-SU-2018:0852-1: An update that fixes three vulnerabilities is now available.

Category: security (moderate)
Bug References: 1078677,1082480,1082481
CVE References: CVE-2017-15706,CVE-2018-1304,CVE-2018-1305
Sources used:
openSUSE Leap 42.3 (src):    tomcat-8.0.50-12.1
Comment 9 Swamp Workflow Management 2018-10-19 19:08:50 UTC
SUSE-SU-2018:3261-1: An update that fixes 7 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1078677,1082480,1082481,1093697,1102379,1102400,1110850
CVE References: CVE-2017-15706,CVE-2018-11784,CVE-2018-1304,CVE-2018-1305,CVE-2018-1336,CVE-2018-8014,CVE-2018-8034
Sources used:
SUSE Linux Enterprise Server 12-LTSS (src):    tomcat-7.0.90-7.23.1
Comment 10 Swamp Workflow Management 2018-10-24 16:46:12 UTC
SUSE-SU-2018:3388-1: An update that fixes 8 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1078677,1082480,1082481,1093697,1102379,1102400,1102410,1110850
CVE References: CVE-2017-15706,CVE-2018-11784,CVE-2018-1304,CVE-2018-1305,CVE-2018-1336,CVE-2018-8014,CVE-2018-8034,CVE-2018-8037
Sources used:
SUSE Linux Enterprise Server for SAP 12-SP1 (src):    tomcat-8.0.53-10.35.1
SUSE Linux Enterprise Server 12-SP1-LTSS (src):    tomcat-8.0.53-10.35.1
Comment 11 Marcus Meissner 2019-06-06 11:44:48 UTC
released