Security News

Cybersecurity news aggregator

🐧
MEDIUM Vulnerabilities Ubuntu Security

USN-8369-1: Apache Tomcat Connectors vulnerability

cve-2026-xxxxlinuxsystem-securitycve-2024-46544mitre-ta0001
  • What: Apache Tomcat Connectors vulnerability in Ubuntu
  • Impact: Local users could expose sensitive information or cause a denial of service
Read Full Article →

Ubuntu Security Notices USN-8369-1 USN-8369-1: Apache Tomcat Connectors vulnerability Publication date 2 June 2026 Overview Apache Tomcat Connectors could allow local users to expose sensitive information or cause a denial of service. Releases 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS Open side navigation Close side navigation Packages Details Update instructions References Packages libapache-mod-jk - Apache 2 connector for the Tomcat Java servlet engine Details It was discovered that Apache Tomcat Connectors used incorrect default permissions for shared memory on Unix-like systems. A local attacker could possibly use this issue to view or modify mod_jk configuration data in shared memory, resulting in sensitive information exposure or a denial of service. It was discovered that Apache Tomcat Connectors used incorrect default permissions for shared memory on Unix-like systems. A local attacker could possibly use this issue to view or modify mod_jk configuration data in shared memory, resulting in sensitive information exposure or a denial of service. Update instructions In general, a standard system update will make all the necessary changes. Learn more about how to get the fixes. The problem can be corrected by updating your system to the following package versions: Ubuntu Release Package Version 24.04 LTS noble libapache2-mod-jk – 1:1.2.49-1ubuntu0.1~esm1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. 22.04 LTS jammy libapache2-mod-jk – 1:1.2.48-1ubuntu0.1+esm1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. 20.04 LTS focal libapache2-mod-jk – 1:1.2.46-1ubuntu0.1+esm1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. 18.04 LTS bionic libapache2-mod-jk – 1:1.2.43-1ubuntu0.1~esm2 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. 16.04 LTS xenial libapache2-mod-jk – 1:1.2.41-1ubuntu0.1~esm1 Reduce your security exposure Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines. Get Ubuntu Pro References CVE-2024-46544 CVE-2024-46544

Related Articles

HIGH [UPDATE] [hoch] QT: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen BSI Germany MEDIUM [UPDATE] [mittel] QT: Schwachstelle ermöglicht nicht spezifizierten Angriff BSI Germany HIGH GLSA 202604-04: DTrace: Arbitrary file creation via dtprobed Gentoo GLSA HIGH [NEU] [mittel] GIMP: Mehrere Schwachstellen ermöglichen CodeausfĂŒhrung BSI Germany
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn