{"id":1426,"date":"2019-06-24T23:05:33","date_gmt":"2019-06-25T04:05:33","guid":{"rendered":"https:\/\/cert.pa\/?p=1426"},"modified":"2019-06-25T14:03:55","modified_gmt":"2019-06-25T19:03:55","slug":"csirt-panama-aviso-2019-06-24-vulnerabilidad-de-denegacion-de-servicio-en-apache-tomcat","status":"publish","type":"post","link":"https:\/\/cert.pa\/?p=1426","title":{"rendered":"CSIRT Panam\u00e1 Aviso 2019-06-24 Vulnerabilidad de denegaci\u00f3n de servicio en Apache Tomcat"},"content":{"rendered":"\n<p>Gravedad: Alta<br>\nFecha de publicaci\u00f3n: 24 junio 2019<br>\nFecha de modificaci\u00f3n: 24 junio 2019<br>\nFuente: http:\/\/tomcat.apache.org<\/p>\n\n\n\n<p>Sistemas Afectados<br>\nApache Tomcat, versiones:<br>\n\u2022    Desde la 8.5.0 hasta 8.5.40;<br>\n\u2022    Desde la 9.0.0.M1 hasta 9.0.19.<\/p>\n\n\n\n<p>I. Descripci\u00f3n<br> Apache ha publicado una correcci\u00f3n para una actualizaci\u00f3n incompleta, la vulnerabilidad con identificador CVE-2019-0199, que podr\u00eda permitir a un atacante el agotamiento de los hilos y la denegaci\u00f3n del servicio (DoS).<\/p>\n\n\n\n<p>II. Referencia a soluciones, herramientas e informaci\u00f3n<br>\nActualizar a la versi\u00f3n 8.5.41 o superior.<br>\nActualizar a la versi\u00f3n 9.0.20 o superior.<\/p>\n\n\n\n<p><a href=\"http:\/\/tomcat.apache.org\/security-8.html#Fixed_in_Apache_Tomcat_8.5.41\">http:\/\/tomcat.apache.org\/security-8.html#Fixed_in_Apache_Tomcat_8.5.41<\/a><br> <a href=\"http:\/\/tomcat.apache.org\/security-9.html#Fixed_in_Apache_Tomcat_9.0.20\">http:\/\/tomcat.apache.org\/security-9.html#Fixed_in_Apache_Tomcat_9.0.20<\/a><\/p>\n\n\n\n<p>IV. Informaci\u00f3n de contacto<br> CSIRT PANAMA<br> Autoridad Nacional para la Innovaci\u00f3n Gubernamental<br> E-mail: info@cert.pa<br> Web: <a href=\"https:\/\/cert.pa\">https:\/\/cert.pa<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Gravedad: Alta Fecha de publicaci\u00f3n: 24 junio 2019 Fecha de modificaci\u00f3n: 24 junio 2019 Fuente: http:\/\/tomcat.apache.org Sistemas Afectados Apache Tomcat, versiones: \u2022 Desde la 8.5.0 hasta 8.5.40; \u2022 Desde la 9.0.0.M1 hasta 9.0.19. I. Descripci\u00f3n&#8230;<\/p>\n","protected":false},"author":4,"featured_media":1428,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[],"class_list":["post-1426","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1426","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1426"}],"version-history":[{"count":2,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1426\/revisions"}],"predecessor-version":[{"id":1429,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1426\/revisions\/1429"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/1428"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1426"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1426"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1426"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}