On 20/12/2024 16:42, Carl Wick wrote:
Hello,
Mitigation:
- Upgrade to Apache Tomcat 9.0.98 or later
- running on Java 8 or Java 11: the system property
sun.io.useCanonCaches must be explicitly set to false (it defaults
to true)
In a Tomcat 9.0.98/Java 11 running on Windows 2019 environment, how
Hello,
Mitigation:
- Upgrade to Apache Tomcat 9.0.98 or later
- running on Java 8 or Java 11: the system property
sun.io.useCanonCaches must be explicitly set to false (it defaults
to true)
In a Tomcat 9.0.98/Java 11 running on Windows 2019 environment, how is this
achieved?
- running on Java 8
CVE-2024-56337 Apache Tomcat - RCE via write-enabled default servlet -
CVE-2024-50379 mitigation was incomplete
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
Apache Tomcat 11.0.0-M1 to 11.0.1
Apache Tomcat 10.1.0-M1 to 10.1.33
Apache Tomcat 9.0.0.M1 to 9.0.97
D
