Fedora Account System
Red Hat Associate
Red Hat Customer
Padding Oracle vulnerability in Apache Tomcat's EncryptInterceptor with default configuration. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.18, from 10.0.0-M1 through 10.1.52, from 9.0.13 through 9..115, from 8.5.38 through 8.5.100, from 7.0.100 through 7.0.109. Users are recommended to upgrade to version 11.0.19, 10.1.53 and 9.0.116, which fixes the issue.
This issue has been addressed in the following products: Red Hat JBoss Web Server 6.2.3 Via RHSA-2026:20406 https://access.redhat.com/errata/RHSA-2026:20406
This issue has been addressed in the following products: Red Hat JBoss Web Server 6.2 on RHEL 10 Red Hat JBoss Web Server 6.2 on RHEL 8 Red Hat JBoss Web Server 6.2 on RHEL 9 Via RHSA-2026:20405 https://access.redhat.com/errata/RHSA-2026:20405
This issue has been addressed in the following products: Red Hat Enterprise Linux 10.0 Extended Update Support Via RHSA-2026:36789 https://access.redhat.com/errata/RHSA-2026:36789
This issue has been addressed in the following products: Red Hat Enterprise Linux 10.0 Extended Update Support Via RHSA-2026:36787 https://access.redhat.com/errata/RHSA-2026:36787
This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2026:36790 https://access.redhat.com/errata/RHSA-2026:36790
This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2026:36788 https://access.redhat.com/errata/RHSA-2026:36788
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Via RHSA-2026:36878 https://access.redhat.com/errata/RHSA-2026:36878
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions Via RHSA-2026:36876 https://access.redhat.com/errata/RHSA-2026:36876
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.6 Extended Update Support Via RHSA-2026:36877 https://access.redhat.com/errata/RHSA-2026:36877
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2026:36879 https://access.redhat.com/errata/RHSA-2026:36879
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Red Hat Enterprise Linux 8.8 Telecommunications Update Service Via RHSA-2026:37136 https://access.redhat.com/errata/RHSA-2026:37136
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2026:37137 https://access.redhat.com/errata/RHSA-2026:37137
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2026:38505 https://access.redhat.com/errata/RHSA-2026:38505
This issue has been addressed in the following products: Red Hat JBoss Web Server 7.0.0 Via RHSA-2026:39189 https://access.redhat.com/errata/RHSA-2026:39189
This issue has been addressed in the following products: Red Hat JBoss Web Server 7.0 on RHEL 10 Red Hat JBoss Web Server 7.0 on RHEL 8 Red Hat JBoss Web Server 7.0 on RHEL 9 Via RHSA-2026:39188 https://access.redhat.com/errata/RHSA-2026:39188