漏洞类别:OEL
漏洞等级: 
漏洞信息
Oracle Enterprise Linux has released security update for tomcat to fix the vulnerabilities.
Affected Products:
Oracle Linux 7
漏洞危害
Malicious users could use this vulnerability to change partial contents or configuration on the system.
解决方案
To resolve this issue, upgrade to the latest packages which contain a patch. Refer to Oracle Enterprise Linux advisory below for updates and patch information:
Patch:
Following are links for downloading patches to fix the vulnerabilities:
ELSA-2017-2247: Oracle Linux 7
Virtual Patches:
Trend Micro Virtual Patching
Virtual Patch #1006107: 1006107 - Apache Tomcat Chunk Request Remote Denial Of Service Vulnerability
Virtual Patch #1005496: 1005496 - Identified HTTP Request Smuggling Attack
Virtual Patch #1005929: 1005929 - Apache Tomcat Commons UploadFile Denial Of Service Vulnerability
0daybank
文章评论