CVE-2021-42340
maven/org.apache.tomcat/tomcat
Missing Release of Resource after Effective Lifetime
tomcat is vulnerable to a memory leak that, over time, could lead to a denial of service via an OutOfMemoryError.
All versions starting from 8.5.60 before 8.5.72, all versions starting from 9.0.40 before 9.0.54, all versions starting from 10.0.0 up to 10.1.0
Upgrade to versions 8.5.72, 9.0.54 or above.
2021-10-21
source |