[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[upki-fed:01086] 【補足情報】【注意喚起】Tomcatの脆弱性修正版リリースについて(2016/11/1)

Subject: [upki-fed:01086] 【補足情報】【注意喚起】Tomcatの脆弱性修正版リリースについて(2016/11/1)
Date: Mon, 21 Nov 2016 17:51:38 +0900
From: 国立情報学研究所　学認事務局　野田 <xxxxxxxxxxxxxx@xxxxxxxxx>

$B3XG'>pJs8r49(BML$B;22CpJs3X8&5f=j!!3XG';vL36I$NLnED$G$9!#(B
$B$$$D$b3XG'$N1?1D$K$46(NO$r;r$j!$$"$j$,$H$&$4$6$$$^$9!#(B

$B!!(B2016$BG/(B11$B7n(B9$BF|IU$G%"%J%&%s%9$$$?$7$^$7$?(B
$B!V(BTomcat$B$N@HpJs$,$4$6$$$^$9$N$G!$$40FFb$$$?$7$^$9!#(B


RHEL$B7O(B(RHEL$B!$(BCentOS$BEy(B)$B$N4D6-$G!$(Byum$B$+$i%$%s%9%H!<%k$5$l$k(BTomcat$B$O!$K\=$(B
$B@5HG%Q%C%1!<%8$GF1;~$K(BCVE-2016-6325 [1] $B$*$h$S(BCVE-2016-5425 [2]$B$N@H]30$G$9!#(B

[1] CVE-2016-6325
- http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005561.html
- https://access.redhat.com/security/cve/cve-2016-6325

[2] CVE-2016-5425
- http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005562.html
- https://access.redhat.com/security/cve/cve-2016-5425






On 2016/11/09 9:22, $B3XG';vL36I!!Kv1J(B wrote:

$B3XG'>pJs8r49%a!<%j%s%0%j%9%H;22CpJs3X8&5f=j!!3XG';vL36I$G$9!#(B
$BJ?AG$h$j3XG'$N1?1D$K$46(NO$r;r$j!$$"$j$,$H$&$4$6$$$^$9!#(B

Apache Tomcat$B%W%m%8%'%/%H$h$j!"(BCVE-2016-5388$B$N=$@5$J$I$r4^$`(B Tomcat
7.0.72 $B$,(B9/19$B$K%j%j!<%9$5$l$F$$$^$9!#(B
$B$^$?(BRed Hat$B$+$i$b!"(BRHEL6$B7O!"(BRHEL7$B7O8~$1$K!"(BCVE-2016-5388$B$N=$@5$J$I$r4^$`(B
Tomcat$B%"%C%W%G!<%H%Q%C%1!<%8$,(B10/10$B$K8x3+$5$l$F$$$^$9!#(B

$B0J2<$N%5%$%H$J$I$G>pJs$r$43NG'$$$?$@$-!$$9$_$d$+$K%"%C%W%G!<%H$rhttps://httpoxy.org/

(Apache Tomcat)
http://tomcat.apache.org/download-70.cgi
http://tomcat.apache.org/tomcat-7.0-doc/changelog.html

(Red Hat)
https://access.redhat.com/security/cve/CVE-2016-5388

(RHEL7$B7O%"%C%W%G!<%H%Q%C%1!<%8>pJs(B)
https://rhn.redhat.com/errata/RHSA-2016-2046.html

(RHEL6$B7O%"%C%W%G!<%H%Q%C%1!<%8>pJs(B)
https://rhn.redhat.com/errata/RHSA-2016-2045.html

(JPCERT/CC)
https://www.jpcert.or.jp/at/2016/at160031.html

(JVN)
https://jvn.jp/vu/JVNVU91485132/index.html


--
=========================================================
$B!!9qN)>pJs3X8&5f=j(B $B3X=Q4pHW2](B $B3XG';vL36I!!!JC4Ev!'LnED!K(B
$B!!(BTEL$B!'(B03-4212-2218$B!!(xxxxxxxxxxxxxxx@xxxxxxxxx
$B!!3XG'(BWeb$B%Z!<%8(B  https://www.gakunin.jp/
$B!!?=@A%7%9%F%`(B   https://office.gakunin.nii.ac.jp/
=========================================================

References:
- [upki-fed:01081] 【注意喚起】Tomcatの脆弱性修正版リリースについて(2016/11/1)
  - From: 学認事務局　末永

Prev by Date: [upki-fed:01085] 【重要】学認サービスの一部停止について（12/2 9:00 - 12/5 17:00）
Next by Date: [upki-fed:01087] 【補足情報】【注意喚起】Shibboleth IdPの脆弱性について
Previous by thread: [upki-fed:01081] 【注意喚起】Tomcatの脆弱性修正版リリースについて(2016/11/1)
Next by thread: [upki-fed:01082] 第7回研究教育のためのクラウド利活用セミナー（12月21日開催）のご案内
Index(es):
- Date
- Thread