tomcat 보안 업데이트
업데이트 : 2017.03.21
이름 : tomcat-0:7.0.76-1.an2
벤더 : AnNyung Packaging Team
Tomcat is the servlet container that is used in the official Reference
Implementation for the Java Servlet and JavaServer Pages technologies.
The Java Servlet and JavaServer Pages specifications are developed by
Sun under the Java Community Process.
Tomcat is developed in an open and participatory environment and
released under the Apache Software License. Tomcat is intended to be
a collaboration of the best-of-breed developers from around the world.
We invite you to participate in this open development project.
- update 7.0.76
- security issues
. CVE-2016-3092 Moderate: Denial of Service
. CVE-2016-6797 Low: Unrestricted Access to Global Resources
. CVE-2016-6796 Low: Security Manager Bypass
. CVE-2016-6794 Low: System Property Disclosure
. CVE-2016-5018 Low: Security Manager Bypass
. CVE-2016-0762 Low: Timing Attack
. CVE-2016-6816 Important: Information Disclosure
. CVE-2016-8735 Important: Remote Code Execution
. CVE-2016-8745 Important: Information Disclosure