CVE-2012-0022 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2012-0022 Interim 1 14 2022-12-03T02:44:46Z current 2021-05-30T13:01:11Z 2022-12-03T02:44:46Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2012-0022 Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2013-August/000584.html E-Mail link for SUSE-SU-2013:1374-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP3 tomcat6-6.0.18-20.35.42.1 tomcat6-6.0.41-0.43.1 tomcat6-admin-webapps-6.0.18-20.35.42.1 tomcat6-admin-webapps-6.0.41-0.43.1 tomcat6-docs-webapp-6.0.18-20.35.42.1 tomcat6-docs-webapp-6.0.41-0.43.1 tomcat6-javadoc-6.0.18-20.35.42.1 tomcat6-javadoc-6.0.41-0.43.1 tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 tomcat6-jsp-2_1-api-6.0.41-0.43.1 tomcat6-lib-6.0.18-20.35.42.1 tomcat6-lib-6.0.41-0.43.1 tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 tomcat6-servlet-2_5-api-6.0.41-0.43.1 tomcat6-webapps-6.0.18-20.35.42.1 tomcat6-webapps-6.0.41-0.43.1 tomcat6-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA tomcat6-admin-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA tomcat6-docs-webapp-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA tomcat6-javadoc-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA tomcat6-lib-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA tomcat6-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA tomcat6-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP2 tomcat6-admin-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP2 tomcat6-docs-webapp-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP2 tomcat6-javadoc-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP2 tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP2 tomcat6-lib-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP2 tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP2 tomcat6-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP2 tomcat6-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3 tomcat6-admin-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3 tomcat6-docs-webapp-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3 tomcat6-javadoc-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3 tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3 tomcat6-lib-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3 tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3 tomcat6-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3 tomcat6-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA tomcat6-admin-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA tomcat6-docs-webapp-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA tomcat6-javadoc-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA tomcat6-lib-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA tomcat6-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA tomcat6-6.0.41-0.43.1 as a component of SUSE Linux Enterprise Server 11 SP4 tomcat6-admin-webapps-6.0.41-0.43.1 as a component of SUSE Linux Enterprise Server 11 SP4 tomcat6-docs-webapp-6.0.41-0.43.1 as a component of SUSE Linux Enterprise Server 11 SP4 tomcat6-javadoc-6.0.41-0.43.1 as a component of SUSE Linux Enterprise Server 11 SP4 tomcat6-jsp-2_1-api-6.0.41-0.43.1 as a component of SUSE Linux Enterprise Server 11 SP4 tomcat6-lib-6.0.41-0.43.1 as a component of SUSE Linux Enterprise Server 11 SP4 tomcat6-servlet-2_5-api-6.0.41-0.43.1 as a component of SUSE Linux Enterprise Server 11 SP4 tomcat6-webapps-6.0.41-0.43.1 as a component of SUSE Linux Enterprise Server 11 SP4 tomcat6-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP2 tomcat6-admin-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP2 tomcat6-docs-webapp-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP2 tomcat6-javadoc-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP2 tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP2 tomcat6-lib-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP2 tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP2 tomcat6-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP2 tomcat6-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 tomcat6-admin-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 tomcat6-docs-webapp-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 tomcat6-javadoc-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 tomcat6-lib-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 tomcat6-webapps-6.0.18-20.35.42.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858. CVE-2012-0022 SUSE Linux Enterprise Server 11 SP1-TERADATA:tomcat6-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:tomcat6-admin-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:tomcat6-docs-webapp-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:tomcat6-javadoc-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:tomcat6-lib-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:tomcat6-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP2:tomcat6-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP2:tomcat6-admin-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP2:tomcat6-docs-webapp-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP2:tomcat6-javadoc-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP2:tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP2:tomcat6-lib-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP2:tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP2:tomcat6-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3:tomcat6-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3:tomcat6-admin-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3:tomcat6-docs-webapp-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3:tomcat6-javadoc-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3:tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3:tomcat6-lib-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3:tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3:tomcat6-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tomcat6-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tomcat6-admin-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tomcat6-docs-webapp-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tomcat6-javadoc-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tomcat6-lib-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:tomcat6-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server 11 SP4:tomcat6-6.0.41-0.43.1 SUSE Linux Enterprise Server 11 SP4:tomcat6-admin-webapps-6.0.41-0.43.1 SUSE Linux Enterprise Server 11 SP4:tomcat6-docs-webapp-6.0.41-0.43.1 SUSE Linux Enterprise Server 11 SP4:tomcat6-javadoc-6.0.41-0.43.1 SUSE Linux Enterprise Server 11 SP4:tomcat6-jsp-2_1-api-6.0.41-0.43.1 SUSE Linux Enterprise Server 11 SP4:tomcat6-lib-6.0.41-0.43.1 SUSE Linux Enterprise Server 11 SP4:tomcat6-servlet-2_5-api-6.0.41-0.43.1 SUSE Linux Enterprise Server 11 SP4:tomcat6-webapps-6.0.41-0.43.1 SUSE Linux Enterprise Server for SAP Applications 11 SP2:tomcat6-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP2:tomcat6-admin-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP2:tomcat6-docs-webapp-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP2:tomcat6-javadoc-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP2:tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP2:tomcat6-lib-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP2:tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP2:tomcat6-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tomcat6-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tomcat6-admin-webapps-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tomcat6-docs-webapp-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tomcat6-javadoc-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tomcat6-jsp-2_1-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tomcat6-lib-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tomcat6-servlet-2_5-api-6.0.18-20.35.42.1 SUSE Linux Enterprise Server for SAP Applications 11 SP3:tomcat6-webapps-6.0.18-20.35.42.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P