Launchpad.net

CVE 2012-3544

Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not properly handle chunk extensions in chunked transfer coding, which allows remote attackers to cause a denial of service by streaming data.

Related bugs and status

CVE-2012-3544 (Candidate) is related to these bugs:

Bug #1073159: Please backport tomcat7 7.0.42 (main) from saucy/debian to precise [and tomcat-native] to fix serious CVE reports

Summary				In	Importance	Status
	1073159	Please backport tomcat7 7.0.42 (main) from saucy/debian to precise [and tomcat-native] to fix serious CVE reports		Precise Backports	Undecided	Won't Fix
	1073159	Please backport tomcat7 7.0.42 (main) from saucy/debian to precise [and tomcat-native] to fix serious CVE reports		tomcat7 (Ubuntu)	High	Won't Fix

Bug #1166649: Multiple open vulnerabilities in tomcat6 in quantal

		In	Importance	Status
1166649	Multiple open vulnerabilities in tomcat6 in quantal	tomcat6 (Ubuntu)	Undecided	Fix Released
1166649	Multiple open vulnerabilities in tomcat6 in quantal	tomcat6 (Ubuntu Quantal)	Undecided	Fix Released
1166649	Multiple open vulnerabilities in tomcat6 in quantal	tomcat6 (Ubuntu Saucy)	Undecided	Fix Released

Bug #1197151: Please sync package tomcat7 (7.0.35-1~exp2ubuntu1) from Raring Dist to Precise Dist

Summary				In	Importance	Status
	1197151	Please sync package tomcat7 (7.0.35-1~exp2ubuntu1) from Raring Dist to Precise Dist		Ubuntu	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2012-3544

Related bugs and status

Related bugs

References