PT-2020-22717 — Apache+1 Apache Tomcat+1

PT-2020-22717 · Apache+1 · Apache Tomcat+1

Published

2020-03-13

Updated

2020-03-13

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions SUSE Manager (affected versions not specified)

Description The issue is related to the spacewalk-setup component, where an AJP connector for tomcat needs to be created if it does not exist. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations To resolve the issue, follow these steps:

Log in as the root user to the SUSE Manager server.
Stop the Spacewalk service using the command: spacewalk-service stop
Apply the patch using either zypper patch or YaST Online Update.
Upgrade the database schema using the command: spacewalk-schema-upgrade
Start the Spacewalk service using the command: spacewalk-service start

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

SUSE-SU-2020:0670-1

Affected Products

Suse Manager

Apache Tomcat