openSUSE Tomcat Security Update Addresses Multiple CVEs

openSUSE Tomcat Security Update Addresses Multiple CVEs

First seen 15 Jul 2026, 09:50 UTC Linuxsecurity 98% similarity 57.8

Article Content

Browse articles
ThreatCluster

On July 15, 2026, openSUSE released a security update for Tomcat addressing several vulnerabilities. The update includes fixes for CVE-2026-50229, CVE-2026-53404, CVE-2026-53434, CVE-2026-55276, CVE-2026-55955, and CVE-2026-55956, all published on June 29, 2026. These vulnerabilities include improper neutralization of HTML tags, control flow issues, and improper authentication that could allow replay attacks. Affected systems include openSUSE Leap 16.0 with Tomcat versions 9.0.119 and 11.0.23. The vulnerabilities could lead to unauthorized access and exploitation if not patched. Users are advised to update their systems promptly to mitigate risks associated with these vulnerabilities.

Key Points: • openSUSE released a security update for Tomcat addressing multiple vulnerabilities. • Six CVEs were published on June 29, 2026, including issues with improper authentication. • Affected systems include openSUSE Leap 16.0 with Tomcat versions 9.0.119 and 11.0.23.

ThreatCluster AI

Timeline

2026-06-29
Multiple CVEs published
CVE-2026-50229, CVE-2026-53404, CVE-2026-53434, CVE-2026-55276, CVE-2026-55955, and CVE-2026-55956 were published, detailing various vulnerabilities in Tomcat.
Linuxsecurity
2026-06-29
CVE-2026-55276 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-06-29
CVE-2026-55955 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-06-29
CVE-2026-53434 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-06-29
CVE-2026-50229 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-06-29
CVE-2026-55956 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-06-29
CVE-2026-53404 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-07-15
openSUSE releases security update
openSUSE issued a security update for Tomcat to address multiple vulnerabilities, urging users to apply the patches.
Linuxsecurity

Community

Browse all →