ByteOS Network

CVE Vulnerability Details :

CVE-2012-4534

PUBLISHED

More Info Official Page

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-19 Dec, 2012 | 11:00

Updated At-06 Aug, 2024 | 20:42

▼CVE Numbering Authority (CNA)

org/apache/tomcat/util/net/NioEndpoint.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28, when the NIO connector is used in conjunction with sendfile and HTTPS, allows remote attackers to cause a denial of service (infinite loop) by terminating the connection during the reading of a response.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://marc.info/?l=bugtraq&m=136612293908376&w=2	vendor-advisory x_refsource_HP
http://svn.apache.org/viewvc?view=revision&revision=1340218	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-updates/2013-01/msg00051.html	vendor-advisory x_refsource_SUSE
http://www.ubuntu.com/usn/USN-1685-1	vendor-advisory x_refsource_UBUNTU
http://www.securitytracker.com/id?1027836	vdb-entry x_refsource_SECTRACK
http://lists.opensuse.org/opensuse-updates/2013-01/msg00080.html	vendor-advisory x_refsource_SUSE
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03748878	vendor-advisory x_refsource_HP
https://issues.apache.org/bugzilla/show_bug.cgi?id=52858	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-updates/2013-01/msg00061.html	vendor-advisory x_refsource_SUSE
http://tomcat.apache.org/security-7.html	x_refsource_CONFIRM
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03748878	vendor-advisory x_refsource_HP
http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/tomcat/util/net/NioEndpoint.java?r1=1340218&r2=1340217&pathrev=1340218	x_refsource_CONFIRM
http://tomcat.apache.org/security-6.html	x_refsource_CONFIRM
http://secunia.com/advisories/57126	third-party-advisory x_refsource_SECUNIA
http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml?r1=1340218&r2=1340217&pathrev=1340218	x_refsource_CONFIRM
http://rhn.redhat.com/errata/RHSA-2013-0623.html	vendor-advisory x_refsource_REDHAT
http://archives.neohapsis.com/archives/bugtraq/2012-12/0043.html	mailing-list x_refsource_BUGTRAQ
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19398	vdb-entry signature x_refsource_OVAL
http://www.securityfocus.com/bid/56813	vdb-entry x_refsource_BID
http://marc.info/?l=bugtraq&m=136612293908376&w=2	vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=139344343412337&w=2	vendor-advisory x_refsource_HP

Hyperlink: http://marc.info/?l=bugtraq&m=136612293908376&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://svn.apache.org/viewvc?view=revision&revision=1340218

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-updates/2013-01/msg00051.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.ubuntu.com/usn/USN-1685-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://www.securitytracker.com/id?1027836

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://lists.opensuse.org/opensuse-updates/2013-01/msg00080.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03748878

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: https://issues.apache.org/bugzilla/show_bug.cgi?id=52858

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-updates/2013-01/msg00061.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://tomcat.apache.org/security-7.html

Resource:

x_refsource_CONFIRM

Hyperlink: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03748878

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/tomcat/util/net/NioEndpoint.java?r1=1340218&r2=1340217&pathrev=1340218

Resource:

x_refsource_CONFIRM

Hyperlink: http://tomcat.apache.org/security-6.html

Resource:

x_refsource_CONFIRM

Hyperlink: http://secunia.com/advisories/57126

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml?r1=1340218&r2=1340217&pathrev=1340218

Resource:

x_refsource_CONFIRM

Hyperlink: http://rhn.redhat.com/errata/RHSA-2013-0623.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://archives.neohapsis.com/archives/bugtraq/2012-12/0043.html

Resource:

mailing-list

x_refsource_BUGTRAQ

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19398

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: http://www.securityfocus.com/bid/56813

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://marc.info/?l=bugtraq&m=136612293908376&w=2

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://marc.info/?l=bugtraq&m=139344343412337&w=2

Resource:

vendor-advisory

x_refsource_HP

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://marc.info/?l=bugtraq&m=136612293908376&w=2	vendor-advisory x_refsource_HP x_transferred
http://svn.apache.org/viewvc?view=revision&revision=1340218	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-updates/2013-01/msg00051.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.ubuntu.com/usn/USN-1685-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://www.securitytracker.com/id?1027836	vdb-entry x_refsource_SECTRACK x_transferred
http://lists.opensuse.org/opensuse-updates/2013-01/msg00080.html	vendor-advisory x_refsource_SUSE x_transferred
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03748878	vendor-advisory x_refsource_HP x_transferred
https://issues.apache.org/bugzilla/show_bug.cgi?id=52858	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-updates/2013-01/msg00061.html	vendor-advisory x_refsource_SUSE x_transferred
http://tomcat.apache.org/security-7.html	x_refsource_CONFIRM x_transferred
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03748878	vendor-advisory x_refsource_HP x_transferred
http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/tomcat/util/net/NioEndpoint.java?r1=1340218&r2=1340217&pathrev=1340218	x_refsource_CONFIRM x_transferred
http://tomcat.apache.org/security-6.html	x_refsource_CONFIRM x_transferred
http://secunia.com/advisories/57126	third-party-advisory x_refsource_SECUNIA x_transferred
http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml?r1=1340218&r2=1340217&pathrev=1340218	x_refsource_CONFIRM x_transferred
http://rhn.redhat.com/errata/RHSA-2013-0623.html	vendor-advisory x_refsource_REDHAT x_transferred
http://archives.neohapsis.com/archives/bugtraq/2012-12/0043.html	mailing-list x_refsource_BUGTRAQ x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19398	vdb-entry signature x_refsource_OVAL x_transferred
http://www.securityfocus.com/bid/56813	vdb-entry x_refsource_BID x_transferred
http://marc.info/?l=bugtraq&m=136612293908376&w=2	vendor-advisory x_refsource_HP x_transferred
http://marc.info/?l=bugtraq&m=139344343412337&w=2	vendor-advisory x_refsource_HP x_transferred