Apache Tomcat¤Ë¾ðÊóϳ±Ì¤ò°ú¤µ¯¤³¤¹²ÄǽÀ¤¬¤¢¤ëÀȼåÀ¡¢¥¢¥Ã¥×¥Ç¡¼¥È¤ò
JPCERT¥³¡¼¥Ç¥£¥Í¡¼¥·¥ç¥ó¥»¥ó¥¿¡¼(JPCERT/CC)¤Ï1·î22Æü¡¢¡ÖJVNVU#98698305: Apache Tomcat¤Ë¤ª¤±¤ë¾ðÊóϳ¤¨¤¤¤ÎÀȼåÀ¡×¤Ë¤ª¤¤¤Æ¡¢Apache Tomcat¤ËÀȼåÀ¤¬Â¸ºß¤¹¤ë¤È¤·¤Æ¡¢Ãí°Õ¤ò´µ¯¤·¤¿¡£¹¶·â¼Ô¤Ë¤³¤ÎÀȼåÀ¤ò°ÍѤµ¤ì¤ë¤È¡¢¾ðÊó¤¬Ï³±Ì¤¹¤ë²ÄǽÀ¤¬¤¢¤ë¡£
¡ûÀȼåÀ¤Ë´Ø¤¹¤ë¾ðÊó
ÀȼåÀ¤Ë´Ø¤¹¤ë¾ðÊó¤Ï¼¡¤Î¥Ú¡¼¥¸¤Ë¤Þ¤È¤Þ¤Ã¤Æ¤¤¤ë¡£
[SECURITY] CVE-2024-21733 Apache Tomcat - Information Disclosure-Apache Mail Archives
Apache Tomcat - Apache Tomcat 9 vulnerabilities
Apache Tomcat - Apache Tomcat 8 vulnerabilities
½¤Àµ¤µ¤ì¤¿ÀȼåÀ¤Ï¼¡¤Î¤È¤ª¤ê¡£
CVE-2024-21733 - µ¡Ì©¾ðÊó¤ò´Þ¤à¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸¤òÀ¸À®¤¹¤ëÉÔ¶ñ¹ç
¡ûÀȼåÀ¤Î±Æ¶Á¤ò¼õ¤±¤ëÀ½ÉÊ
ÀȼåÀ¤¬Â¸ºß¤¹¤ë¤È¤µ¤ì¤ë¥×¥í¥À¥¯¥È¤ª¤è¤Ó¥Ð¡¼¥¸¥ç¥ó¤Ï¼¡¤Î¤È¤ª¤ê¡£
Apache Tomcat 9.0.0-M11¤«¤é9.0.43¤Þ¤Ç¤Î¥Ð¡¼¥¸¥ç¥ó
Apache Tomcat 8.5.7¤«¤é8.5.63¤Þ¤Ç¤Î¥Ð¡¼¥¸¥ç¥ó
¡ûÀȼåÀ¤¬½¤Àµ¤µ¤ì¤¿¥Ð¡¼¥¸¥ç¥ó
ÀȼåÀ¤¬½¤Àµ¤µ¤ì¤¿¥×¥í¥À¥¯¥È¤ª¤è¤Ó¥Ð¡¼¥¸¥ç¥ó¤Ï¼¡¤Î¤È¤ª¤ê¡£
Apache Tomcat 9.0.44
Apache Tomcat 8.5.64
¾åµ¤Î½¤Àµ¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï¡¢¡ÖCVE-2021-41079¡×¤Ë¤ÆÄÉÀפµ¤ì¤ëTLS(Transport Layer Security)¥Ñ¥±¥Ã¥È¤òÉÔŬÀڤ˸¡¾Ú¤¹¤ëÉÔ¶ñ¹ç¤â½¤Àµ¤µ¤ì¤Æ¤¤¤ë¡£JPCERT/CC¤Ï³«È¯¼Ô¤ÎÄ󶡤¹¤ë¾ðÊó¤Ë¤â¤È¤Å¤¤¤Æ¥¢¥Ã¥×¥Ç¡¼¥È¤òŬÍѤ¹¤ë¤³¤È¤ò¿ä¾©¤·¤Æ¤¤¤ë¡£
ÀȼåÀ¤Ë´Ø¤¹¤ë¾ðÊó¤Ï¼¡¤Î¥Ú¡¼¥¸¤Ë¤Þ¤È¤Þ¤Ã¤Æ¤¤¤ë¡£
[SECURITY] CVE-2024-21733 Apache Tomcat - Information Disclosure-Apache Mail Archives
Apache Tomcat - Apache Tomcat 9 vulnerabilities
Apache Tomcat - Apache Tomcat 8 vulnerabilities
½¤Àµ¤µ¤ì¤¿ÀȼåÀ¤Ï¼¡¤Î¤È¤ª¤ê¡£
CVE-2024-21733 - µ¡Ì©¾ðÊó¤ò´Þ¤à¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸¤òÀ¸À®¤¹¤ëÉÔ¶ñ¹ç
¡ûÀȼåÀ¤Î±Æ¶Á¤ò¼õ¤±¤ëÀ½ÉÊ
ÀȼåÀ¤¬Â¸ºß¤¹¤ë¤È¤µ¤ì¤ë¥×¥í¥À¥¯¥È¤ª¤è¤Ó¥Ð¡¼¥¸¥ç¥ó¤Ï¼¡¤Î¤È¤ª¤ê¡£
Apache Tomcat 9.0.0-M11¤«¤é9.0.43¤Þ¤Ç¤Î¥Ð¡¼¥¸¥ç¥ó
Apache Tomcat 8.5.7¤«¤é8.5.63¤Þ¤Ç¤Î¥Ð¡¼¥¸¥ç¥ó
¡ûÀȼåÀ¤¬½¤Àµ¤µ¤ì¤¿¥Ð¡¼¥¸¥ç¥ó
ÀȼåÀ¤¬½¤Àµ¤µ¤ì¤¿¥×¥í¥À¥¯¥È¤ª¤è¤Ó¥Ð¡¼¥¸¥ç¥ó¤Ï¼¡¤Î¤È¤ª¤ê¡£
Apache Tomcat 9.0.44
Apache Tomcat 8.5.64
¾åµ¤Î½¤Àµ¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï¡¢¡ÖCVE-2021-41079¡×¤Ë¤ÆÄÉÀפµ¤ì¤ëTLS(Transport Layer Security)¥Ñ¥±¥Ã¥È¤òÉÔŬÀڤ˸¡¾Ú¤¹¤ëÉÔ¶ñ¹ç¤â½¤Àµ¤µ¤ì¤Æ¤¤¤ë¡£JPCERT/CC¤Ï³«È¯¼Ô¤ÎÄ󶡤¹¤ë¾ðÊó¤Ë¤â¤È¤Å¤¤¤Æ¥¢¥Ã¥×¥Ç¡¼¥È¤òŬÍѤ¹¤ë¤³¤È¤ò¿ä¾©¤·¤Æ¤¤¤ë¡£
