资产安全
商业安全
安全服务
返回基本信息
- 发布日期2022-04-01
- 感知时间2022-04-01
- 漏洞类型普通更新
- 风险等级未知
- 更新版本10.0.20
- 情报贡献TSRC
更新标题
Tomcat 10.0.20 Released
更新详情
<br/> - Update the packaged version of the Tomcat Native Library to 1.2.32 to<br/> pick up Windows binaries built with OpenSSL 1.1.1n.<br/> - Improve logging of unknown HTTP/2 settings frames. Pull request by<br/> Thomas Hoffmann.<br/> - Add additional warnings if incompatible TLS configurations are used<br/> such as HTTP/2 with CLIENT-CERT authentication.<br/> - Harden the class loader to provide a mitigation for CVE-2022-22965<br/> a Spring Framework vulnerability.
软件描述
Apache Tomcat是一款开放源码的JSP应用服务器程序
CVE编号
<p><a target="_blank" href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22965">CVE-2022-22965</a></p>
Knowsafe分析
暂无
业界资讯
暂无
来源链接
http://tomcat.apache.org/
微信扫码关注公众号
