SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for tomcat fixes the following issues :
Tomcat was updated to 9.0.36 See changelog at
- CVE-2020-11996: Fixed an issue which by sending a specially crafted sequence of HTTP/2 requests could have triggered high CPU usage for several seconds making potentially the server unresponsive (bsc#1173389).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
SolutionUpdate the affected tomcat packages.