CVE-2021-43980
28.09.2022, 14:15
The simplified implementation of blocking reads and writes introduced in Tomcat 10 and back-ported to Tomcat 9.0.47 onwards exposed a long standing (but extremely hard to trigger) concurrency bug in Apache Tomcat 10.1.0 to 10.1.0-M12, 10.0.0-M1 to 10.0.18, 9.0.0-M1 to 9.0.60 and 8.5.0 to 8.5.77 that could cause client connections to share an Http11Processor instance resulting in responses, or part responses, to be received by the wrong client.
| Vendor | Product | Version |
|---|---|---|
| apache | tomcat | 8.5.0 ≤ 𝑥 ≤ 8.5.77 |
| apache | tomcat | 9.0.0 ≤ 𝑥 ≤ 9.0.60 |
| apache | tomcat | 10.0.0 ≤ 𝑥 ≤ 10.0.18 |
| apache | tomcat | 10.1.0:milestone1 |
| apache | tomcat | 10.1.0:milestone10 |
| apache | tomcat | 10.1.0:milestone11 |
| apache | tomcat | 10.1.0:milestone12 |
| apache | tomcat | 10.1.0:milestone2 |
| apache | tomcat | 10.1.0:milestone3 |
| apache | tomcat | 10.1.0:milestone4 |
| apache | tomcat | 10.1.0:milestone5 |
| apache | tomcat | 10.1.0:milestone6 |
| apache | tomcat | 10.1.0:milestone7 |
| apache | tomcat | 10.1.0:milestone8 |
| apache | tomcat | 10.1.0:milestone9 |
| debian | debian_linux | 10.0 |
| debian | debian_linux | 11.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| tomcat6 |
| ||||||||||||||||||
| tomcat7 |
| ||||||||||||||||||
| tomcat8 |
| ||||||||||||||||||
| tomcat9 |
|
References