14 DAY TRIAL // Canonical has announced that a few Tomcat vulnerabilities have been identified and corrected in its Ubuntu 15.04, Ubuntu 14.10, and Ubuntu 14.04 LTS operating systems.
Canonical has pushed a new update in order to correct these problems. The Tomcat security issues have been fixed and users have been advised to upgrade as soon as possible, even if this is not a major issue.
"It was discovered that Tomcat incorrectly handled data with malformed chunked transfer coding. A remote attacker could possibly use this issue to conduct HTTP request smuggling attacks, or cause Tomcat to consume resources, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS," reads the security notice.
For a more detailed description of the problems, you can see Canonical's security notification. The flaws can be fixed if you upgrade your system(s) to the latest python2.7, python2.7-minimal, python3.4-minimal, and python3.4, specific to each distribution.
To apply the patch, run the Update Manager application; or you can open a terminal and enter the following commands (you will need to be root for this to work):
sudo apt-get dist-upgrade