Release date:
2026-03-25 09:45:46 UTC
Description:
- CVE-2025-66614: enforce SNI and HTTP Host header matching to prevent bypass
of client certificate authentication when multiple virtual hosts are configured
Updated packages:
-
tomcat-9.0.62-11.el9_2.3.tuxcare.els16.noarch.rpm
sha:c1fbee5f2dd11bb2101928322aa07db7db4d760c632d28a8e9eceaa20fdf9bbd
-
tomcat-admin-webapps-9.0.62-11.el9_2.3.tuxcare.els16.noarch.rpm
sha:0e7f6d34ee31b1047b8f4a8ceae5e1f1bb7647c832d9291f181c9b225cbc103b
-
tomcat-docs-webapp-9.0.62-11.el9_2.3.tuxcare.els16.noarch.rpm
sha:bb259c29687b176f3e8ffaf4aceea2eac2ab890cc01ad2d9b00d052a3c828bc7
-
tomcat-el-3.0-api-9.0.62-11.el9_2.3.tuxcare.els16.noarch.rpm
sha:d4033abe978a089845edee9f9b3e65d8af48f14a9716be769ea845ea6b1c755e
-
tomcat-jsp-2.3-api-9.0.62-11.el9_2.3.tuxcare.els16.noarch.rpm
sha:760e01765012ff8d809be3cb7fb24f044428f1dc8f06c8e0516e0cee8e0f27cc
-
tomcat-lib-9.0.62-11.el9_2.3.tuxcare.els16.noarch.rpm
sha:2973a824033df7579a1bbcce669ee3379d61291369d5af61540e1cbc860c53a1
-
tomcat-servlet-4.0-api-9.0.62-11.el9_2.3.tuxcare.els16.noarch.rpm
sha:52eb3a8d5a9d010e78f42ad3e0cd303aaf2e50389bb22c6b9c2b7b2e808b0033
-
tomcat-webapps-9.0.62-11.el9_2.3.tuxcare.els16.noarch.rpm
sha:3e9c59e910fbb1fee4ef8775d5c356c24981b9a6730e744659096577d56654fd
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
