Back to bug 750521
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Jan Lieskovsky | 2011-11-01 13:21:41 UTC | CC | awnuk, dknox, jdennis, jpazdziora, mharmsen, pcheung, tromey | |
| Jan Lieskovsky | 2011-11-01 13:33:50 UTC | Blocks | 750525 | |
| Jan Lieskovsky | 2011-11-01 13:55:37 UTC | Summary | EMBARGOED CVE-2011-4084 tomcat5, tomcat6: DoS (excessive CPU use) by processing CGI request with large amount of POST paramaters | EMBARGOED CVE-2011-4084 tomcat5, tomcat6: DoS (excessive CPU use, online latency and packet drop) by processing CGI request with large amount of POST paramaters |
| Jan Lieskovsky | 2011-11-01 16:49:07 UTC | Summary | EMBARGOED CVE-2011-4084 tomcat5, tomcat6: DoS (excessive CPU use, online latency and packet drop) by processing CGI request with large amount of POST paramaters | EMBARGOED CVE-2011-4084 tomcat5, tomcat6: DoS (excessive CPU use, online latency and packet drop) by processing CGI request with large amount of POST parameters (oCERT-2011-003) |
| David Jorm | 2011-11-04 01:59:23 UTC | CC | djorm | |
| Whiteboard | impact=low,public=20111227,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-6/tomcat6=new,jbews-1/tomcat=new,fedora-all/tomcat6=new,rhel-5/tomcat5=new,RHDS3/Platform=new,certificate_system_7.3/Tomcat=new rhn_satellite_5.4/Other=new,jbews-1/tomcat5=new,fedora-all/tomcat5=new | impact=important,public=20111227,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-6/tomcat6=affected,jbews-1/tomcat6=affected,fedora-all/tomcat6=affected,rhel-5/tomcat5=affected,RHDS3/Platform=new certificate_system_7.3/Tomcat=new,rhn_satellite_5.4/Other=new,jbews-1/tomcat5=affected,fedora-all/tomcat5=affected | ||
| David Jorm | 2011-11-07 04:20:44 UTC | Whiteboard | impact=important,public=20111227,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-6/tomcat6=affected,jbews-1/tomcat6=affected,fedora-all/tomcat6=affected,rhel-5/tomcat5=affected,RHDS3/Platform=new certificate_system_7.3/Tomcat=new,rhn_satellite_5.4/Other=new,jbews-1/tomcat5=affected,fedora-all/tomcat5=affected | impact=moderate,public=20111227,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-6/tomcat6=affected,jbews-1/tomcat6=affected,fedora-all/tomcat6=affected,rhel-5/tomcat5=affected,RHDS3/Platform=new certificate_system_7.3/Tomcat=new,rhn_satellite_5.4/Other=new,jbews-1/tomcat5=affected,fedora-all/tomcat5=affected |
| David Jorm | 2011-11-07 04:45:39 UTC | Whiteboard | impact=moderate,public=20111227,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-6/tomcat6=affected,jbews-1/tomcat6=affected,fedora-all/tomcat6=affected,rhel-5/tomcat5=affected,RHDS3/Platform=new certificate_system_7.3/Tomcat=new,rhn_satellite_5.4/Other=new,jbews-1/tomcat5=affected,fedora-all/tomcat5=affected | impact=moderate,public=20111227,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-6/tomcat6=affected,jbews-1/tomcat6=affected,fedora-all/tomcat6=affected,rhel-5/tomcat5=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/Other=affected,jbews-1/tomcat5=affected,fedora-all/tomcat5=affected |
| David Jorm | 2011-11-07 05:00:54 UTC | Depends On | 751657 | |
| David Jorm | 2011-11-07 05:01:05 UTC | Depends On | 751658 | |
| David Jorm | 2011-11-07 05:01:17 UTC | Depends On | 751659 | |
| David Jorm | 2011-11-07 05:01:28 UTC | Depends On | 751660 | |
| David Jorm | 2011-11-07 05:01:36 UTC | Depends On | 751661 | |
| David Jorm | 2011-11-07 05:01:44 UTC | Depends On | 751662 | |
| David Jorm | 2011-11-07 05:01:54 UTC | Depends On | 751663 | |
| David Jorm | 2011-11-07 05:02:08 UTC | Depends On | 751664 | |
| David Jorm | 2011-11-07 05:02:16 UTC | Depends On | 751665 | |
| David Jorm | 2011-11-07 05:02:25 UTC | Depends On | 751666 | |
| Šimon Lukašík | 2011-11-07 10:10:57 UTC | CC | slukasik | |
| Tomas Hoger | 2011-11-10 09:44:08 UTC | Summary | EMBARGOED CVE-2011-4084 tomcat5, tomcat6: DoS (excessive CPU use, online latency and packet drop) by processing CGI request with large amount of POST parameters (oCERT-2011-003) | EMBARGOED CVE-2011-4084 tomcat: CPU usage DoS when processing requests with large amount parameters (oCERT-2011-003) |
| David Jorm | 2011-11-11 00:24:42 UTC | Summary | EMBARGOED CVE-2011-4084 tomcat: CPU usage DoS when processing requests with large amount parameters (oCERT-2011-003) | EMBARGOED CVE-2011-4084 tomcat: CPU usage DoS when processing requests with large amount of parameters (oCERT-2011-003) |
| David Jorm | 2011-11-30 23:31:58 UTC | Priority | low | medium |
| Severity | low | medium | ||
| David Jorm | 2011-12-02 04:50:43 UTC | CC | overholt | |
| Tomas Hoger | 2011-12-29 12:20:36 UTC | Whiteboard | impact=moderate,public=20111227,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-6/tomcat6=affected,jbews-1/tomcat6=affected,fedora-all/tomcat6=affected,rhel-5/tomcat5=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/Other=affected,jbews-1/tomcat5=affected,fedora-all/tomcat5=affected | impact=moderate,public=20111227,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected |
| Tomas Hoger | 2011-12-29 12:26:18 UTC | Group | security, qe_staff | |
| Summary | EMBARGOED CVE-2011-4084 tomcat: CPU usage DoS when processing requests with large amount of parameters (oCERT-2011-003) | CVE-2011-4084 tomcat: hash table collisions CPU usage DoS (oCERT-2011-003) | ||
| Whiteboard | impact=moderate,public=20111227,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected | ||
| Tomas Hoger | 2011-12-29 13:36:09 UTC | Group | security | |
| Tomas Hoger | 2011-12-29 13:36:26 UTC | Group | security | |
| Tomas Hoger | 2011-12-30 10:13:38 UTC | Blocks | 770929 | |
| Shaun Appleton | 2012-01-02 15:09:24 UTC | CC | sappleto | |
| Ole Dalgaard | 2012-01-03 14:30:00 UTC | CC | ole.d | |
| Vincent Danen | 2012-01-03 20:57:05 UTC | CC | vdanen | |
| Summary | CVE-2011-4084 tomcat: hash table collisions CPU usage DoS (oCERT-2011-003) | CVE-2011-4858 tomcat: hash table collisions CPU usage DoS (oCERT-2011-003) | ||
| Alias | CVE-2011-4084 | CVE-2011-4858 | ||
| Kurt Seifried | 2012-01-03 23:56:33 UTC | Whiteboard | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-express-1/tomcat6=affected |
| Kurt Seifried | 2012-01-04 00:00:15 UTC | Whiteboard | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-express-1/tomcat6=affected | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-express-1/tomcat6=affected,openshift-flex-1/tomcat6=affected |
| Kurt Seifried | 2012-01-04 00:31:00 UTC | Depends On | 771526 | |
| Kurt Seifried | 2012-01-04 00:35:15 UTC | Depends On | 771532 | |
| Tomas Hoger | 2012-01-04 08:51:16 UTC | Alias | CVE-2011-4084 | |
| Vincent Danen | 2012-01-05 14:39:54 UTC | Alias | CVE-2011-4084 | |
| Tomas Hoger | 2012-01-05 15:05:31 UTC | Alias | CVE-2011-4084 | |
| Michal Haško | 2012-01-05 15:53:41 UTC | CC | mhasko | |
| Flags | needinfo?(djorm) | |||
| David Jorm | 2012-01-06 00:01:15 UTC | Flags | needinfo?(djorm) | |
| David Jorm | 2012-01-09 03:32:20 UTC | Alias | CVE-2011-4084 | |
| Tomas Hoger | 2012-01-09 08:06:30 UTC | Alias | CVE-2011-4084 | |
| Vincent Danen | 2012-01-17 23:40:08 UTC | Alias | CVE-2012-0022 | |
| Tomas Hoger | 2012-01-18 08:34:18 UTC | Alias | CVE-2012-0022 | |
| Yoshiki Ohmura | 2012-01-22 15:37:13 UTC | CC | yohmura | |
| Aaron Ogburn | 2012-01-31 15:55:25 UTC | CC | aogburn | |
| David Knox | 2012-01-31 18:24:47 UTC | Status | NEW | ASSIGNED |
| daxiezhi | 2012-02-06 01:44:27 UTC | CC | daxiezhi | |
| Aaron Ogburn | 2012-02-15 20:41:07 UTC | Priority | medium | high |
| Severity | medium | high | ||
| Tomas Hoger | 2012-02-16 08:00:41 UTC | Priority | high | medium |
| Severity | high | medium | ||
| Masaki Furuta ( RH ) | 2012-02-17 02:48:16 UTC | CC | mfuruta | |
| Flags | needinfo?(security-response-team) | |||
| Vincent Danen | 2012-02-17 16:45:00 UTC | Flags | needinfo?(security-response-team) | |
| David Jorm | 2012-02-20 06:03:51 UTC | Blocks | 795277 | |
| Masaki Furuta ( RH ) | 2012-03-07 12:41:11 UTC | Flags | needinfo?(security-response-team) | |
| Masaki Furuta ( RH ) | 2012-03-14 15:54:10 UTC | Flags | needinfo?(security-response-team) | |
| David Jorm | 2012-03-20 04:35:15 UTC | Blocks | 804887 | |
| Masaki Furuta ( RH ) | 2012-03-28 06:47:15 UTC | Flags | needinfo?(security-response-team) | |
| Jan Lieskovsky | 2012-03-28 08:26:47 UTC | Flags | needinfo?(security-response-team) | |
| Michal Haško | 2012-03-30 10:26:24 UTC | Flags | needinfo?(djorm) | |
| David Jorm | 2012-04-02 07:11:57 UTC | Flags | needinfo?(djorm) | |
| David Jorm | 2012-04-05 03:22:33 UTC | Blocks | 810065 | |
| David Jorm | 2012-04-11 01:19:13 UTC | Blocks | 811419 | |
| Zeena | 2012-05-01 03:26:41 UTC | CC | overholt | patrickm |
| Kurt Seifried | 2012-05-08 16:42:03 UTC | Whiteboard | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-express-1/tomcat6=affected,openshift-flex-1/tomcat6=affected | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-1/tomcat6=affected |
| Tomas Hoger | 2012-06-05 13:35:20 UTC | Whiteboard | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=affected certificate_system_7.3/Tomcat=affected,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-1/tomcat6=affected | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=wontfix certificate_system_7.3/Tomcat=wontfix,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-1/tomcat6=affected |
| Tomas Hoger | 2012-06-05 13:36:01 UTC | CC | ccoleman, tkramer | |
| David Jorm | 2012-06-06 05:34:32 UTC | Whiteboard | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=wontfix certificate_system_7.3/Tomcat=wontfix,rhn_satellite_5.4/tomcat5=affected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-1/tomcat6=affected | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=wontfix certificate_system_7.3/Tomcat=wontfix,rhn_satellite_5.4/tomcat5=notaffected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-1/tomcat6=affected |
| David Jorm | 2012-06-06 06:18:19 UTC | Status | ASSIGNED | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2012-06-06 02:18:19 UTC | |||
| jooho lee | 2015-07-08 05:23:54 UTC | CC | jlee | |
| Ján Rusnačko | 2015-07-31 06:45:08 UTC | Whiteboard | impact=moderate,public=20111228,reported=20111101,source=linuxdistros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=wontfix,certificate_system_7.3/Tomcat=wontfix,rhn_satellite_5.4/tomcat5=notaffected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-1/tomcat6=affected | impact=moderate,public=20111228,reported=20111101,source=distros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=wontfix,certificate_system_7.3/Tomcat=wontfix,rhn_satellite_5.4/tomcat5=notaffected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-1/tomcat6=affected |
| Šimon Lukašík | 2018-11-27 17:32:50 UTC | CC | slukasik | |
| Product Security DevOps Team | 2019-09-29 12:48:01 UTC | Whiteboard | impact=moderate,public=20111228,reported=20111101,source=distros,cvss2=5.0/AV:N/AC:L/Au:N/C:N/I:N/A:P,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,jbews-1/tomcat5=affected,jbews-1/tomcat6=affected,RHDS3/Platform=wontfix,certificate_system_7.3/Tomcat=wontfix,rhn_satellite_5.4/tomcat5=notaffected,fedora-all/tomcat5=affected,fedora-all/tomcat6=affected,openshift-1/tomcat6=affected |
Back to bug 750521