The payload length in a WebSocket frame was not correctly validated in Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M1 to 9.0.36, 8.5.0 to 8.5.56 and 7.0.27 to 7.0.104. Invalid payload lengths could trigger an infinite loop. Multiple requests with invalid payload lengths could lead to a denial of service.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "tomcat8-common": "8.0.32-1ubuntu1.13", "tomcat8-admin": "8.0.32-1ubuntu1.13", "tomcat8-user": "8.0.32-1ubuntu1.13", "libtomcat8-java": "8.0.32-1ubuntu1.13", "tomcat8": "8.0.32-1ubuntu1.13", "tomcat8-examples": "8.0.32-1ubuntu1.13", "libservlet3.1-java-doc": "8.0.32-1ubuntu1.13", "libservlet3.1-java": "8.0.32-1ubuntu1.13", "tomcat8-docs": "8.0.32-1ubuntu1.13" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "tomcat9": "9.0.31-1ubuntu0.1", "tomcat9-user": "9.0.31-1ubuntu0.1", "libtomcat9-embed-java": "9.0.31-1ubuntu0.1", "tomcat9-docs": "9.0.31-1ubuntu0.1", "libtomcat9-java": "9.0.31-1ubuntu0.1", "tomcat9-examples": "9.0.31-1ubuntu0.1", "tomcat9-common": "9.0.31-1ubuntu0.1", "tomcat9-admin": "9.0.31-1ubuntu0.1" } ] }