CVE-2012-3546

Publication date 19 December 2012

Last updated 24 July 2024

Ubuntu priority

Description

org/apache/catalina/realm/RealmBase.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.30, when FORM authentication is used, allows remote attackers to bypass security-constraint checks by leveraging a previous setUserPrincipal call and then placing /j_security_check at the end of a URI.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
tomcat6	13.04 raring	Not affected
	12.10 quantal	Fixed 6.0.35-5ubuntu0.1
	12.04 LTS precise	Fixed 6.0.35-1ubuntu3.2
	11.10 oneiric	Fixed 6.0.32-5ubuntu1.4
	10.04 LTS lucid	Fixed 6.0.24-2ubuntu1.12
	8.04 LTS hardy	Not in release
tomcat7	13.04 raring	Not affected
	12.10 quantal	Not affected
	12.04 LTS precise	Fixed 7.0.26-1ubuntu1.2
	11.10 oneiric	Fixed 7.0.21-1ubuntu0.1
	10.04 LTS lucid	Not in release
	8.04 LTS hardy	Not in release

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
tomcat6	Upstream: http://svn.apache.org/viewvc?view=revision&revision=1381035
tomcat7	Upstream: http://svn.apache.org/viewvc?view=revision&revision=1377892

References

Related Ubuntu Security Notices (USN)

USN-1685-1
Tomcat vulnerabilities
14 January 2013