Security Update:The Apache Software Foundation has released an IMPORTANT security advisory to address vulnerabilities in Apache Tomcat.
Date and Time
Apache Tomcat users
The Apache Software Foundation has released an IMPORTANT security advisory to address vulnerabilities in Apache Tomcat.
Advanced Users: For a complete description of the security advisory go to:
- CVE-2019-10072 Apache Tomcat HTTP/2 DoS at: http://mail-archives.us.apache.org/mod_mbox/www-announce/201906.mbox/<ca69531a-1592-be7b-60ce-729549c7f812%40apache.org>
- Apache Tomcat 9.0.0.M1 to 9.0.19
- Apache Tomcat 8.5.0 to 8.5.40
WHAT’S THE PROBLEM?
Exploitation of one of these vulnerabilities could allow an attacker to cause a denial-of-service condition.
HOW DO I PROTECT MY WEB SITE
Users and administrators are encouraged to review the Apache Security advisories listed above upgrade to the appropriate version.