{"id":4634,"date":"2016-12-29T18:06:01","date_gmt":"2016-12-29T10:06:01","guid":{"rendered":"http:\/\/aqzt.com\/4634.html"},"modified":"2020-07-11T20:14:43","modified_gmt":"2020-07-11T12:14:43","slug":"%e5%85%b3%e4%ba%8etomcat%e6%9c%ac%e5%9c%b0%e6%8f%90%e6%9d%83%e6%bc%8f%e6%b4%9e%e6%83%85%e5%86%b5%e7%9a%84%e9%80%9a%e6%8a%a5","status":"publish","type":"post","link":"https:\/\/aqzt.com\/4634.html","title":{"rendered":"\u5173\u4e8eTomcat\u672c\u5730\u63d0\u6743\u6f0f\u6d1e\u60c5\u51b5\u7684\u901a\u62a5"},"content":{"rendered":"\n<p>\u8fd1\u65e5\uff0c\u4e92\u8054\u7f51\u4e0a\u62ab\u9732\u4e86\u5173\u4e8eTomcat\u542f\u52a8\u811a\u672c\u5b58\u5728\u672c\u5730\u63d0\u6743\u6f0f\u6d1e\uff08CNNVD-201609-410\uff09\u7684\u60c5\u51b5\u3002\u5728\u57fa\u4e8edeb\u5b89\u88c5\u683c\u5f0f\u7684\u64cd\u4f5c\u7cfb\u7edf\uff08\u5982Debian\u3001Ubuntu\u7b49\uff09\u4e0b\uff0c\u4f7f\u7528Tomcat\u5b89\u88c5\u5305\u751f\u6210\u7684\u521d\u59cb\u5316\u811a\u672c\u5b58\u5728\u6b64\u6f0f\u6d1e\uff0c<strong><span style=\"color: #ff0000;\">\u5177\u6709\u666e\u901a\u7528\u6237\u6743\u9650\u7684\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u4fee\u6539\u4e3b\u673a\u4efb\u610f\u6587\u4ef6\uff0c\u5728Tomcat\u91cd\u542f\u540e\u53ef\u8fdb\u4e00\u6b65\u63d0\u5347\u6743\u9650\u81f3\u8d85\u7ea7\u7ba1\u7406\u5458\u4ee5\u5b8c\u5168\u63a7\u5236\u670d\u52a1\u5668<\/span><\/strong>\u3002\u76ee\u524d\uff0c\u76f8\u5173\u64cd\u4f5c\u7cfb\u7edf\u5382\u5546\u5df2\u4fee\u590d\u8be5\u6f0f\u6d1e\u3002<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"\/\/cdn.aqzt.com\/wp-content\/uploads\/2016\/12\/tomcat.jpg\" width=\"340\" height=\"216\"   sizes=\"(max-width: 340px) 100vw, 340px\" alt=\"\u5173\u4e8eTomcat\u672c\u5730\u63d0\u6743\u6f0f\u6d1e\u60c5\u51b5\u7684\u901a\u62a5\" \/><\/p>\n<p><strong><span style=\"font-size: 18px;\">\u4e00\u3001\u6f0f\u6d1e\u7b80\u4ecb<\/span><\/strong><\/p>\n<p>Apache Tomcat\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u8f6f\u4ef6\u57fa\u91d1\u4f1a\u4e0b\u5c5e\u7684Jakarta\u9879\u76ee\u7684\u4e00\u6b3e\u8f7b\u91cf\u7ea7Web\u5e94\u7528\u670d\u52a1\u5668\uff0c\u5b83\u4e3b\u8981\u7528\u4e8e\u5f00\u53d1\u548c\u8c03\u8bd5JSP\u7a0b\u5e8f\uff0c\u9002\u7528\u4e8e\u4e2d\u5c0f\u578b\u7cfb\u7edf\u3002<\/p>\n<p>Apache Tomcat \u542f\u52a8\u811a\u672c\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff08\u6f0f\u6d1e\u7f16\u53f7\uff1aCNNVD-201609-410\uff0cCVE-2016-1240\uff09\u3002\u5177\u6709Tomcat\u8d26\u6237\u8bbf\u95ee\u6743\u9650\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5bf9Catalina\u65e5\u5fd7\u6587\u4ef6\u5b9e\u65bd\u7b26\u53f7\u94fe\u63a5\u653b\u51fb\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6root\u6743\u9650\u3002\u4ee5\u4e0b\u4ea7\u54c1\u548c\u7248\u672c\u53d7\u5230\u5f71\u54cd\uff1aApache Tomcat 6.0\uff0c7.0\uff0c8.0\uff0cDebian Linux 8.0\uff0cUbuntu Linux 16.04\uff0c14.04\uff0c12.04\u3002<\/p>\n<p><strong><span style=\"font-size: 18px;\">\u4e8c\u3001\u6f0f\u6d1e\u5371\u5bb3<\/span><\/strong><\/p>\n<p>1\u3001\u5177\u6709\u666e\u901a\u7528\u6237\u6743\u9650\u7684\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u5347\u6743\u9650\u81f3\u8d85\u7ea7\u7ba1\u7406\u5458\u3002<\/p>\n<p>2\u3001\u82e5\u90e8\u7f72\u5728\u8be5\u670d\u52a1\u5668\u4e0a\u7684web\u5e94\u7528\u5b58\u5728\u6587\u4ef6\u4e0a\u4f20\u7b49\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u5728\u83b7\u5f97\u666e\u901a\u7528\u6237\u6743\u9650\u540e\uff0c\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u4fee\u6539\u670d\u52a1\u5668\u7684\u81ea\u542f\u52a8\u6587\u4ef6\uff0c\u5373\u53ef\u4ee5\u8d85\u7ea7\u7ba1\u7406\u5458\u8eab\u4efd\u6267\u884c\u4efb\u610f\u4ee3\u7801\uff0c\u4ece\u800c\u63d0\u5347\u6743\u9650\u5e76\u8fdc\u7a0b\u63a7\u5236\u670d\u52a1\u5668\u3002<\/p>\n<p><strong><span style=\"font-size: 18px;\">\u4e09\u3001\u4fee\u590d\u63aa\u65bd<\/span><\/strong><\/p>\n<p>\u76ee\u524d\uff0cDebian\u3001Ubuntu\u7b49\u76f8\u5173\u64cd\u4f5c\u7cfb\u7edf\u5382\u5546\u5df2\u4fee\u590d\u5e76\u66f4\u65b0\u53d7\u5f71\u54cd\u7684Tomcat\u5b89\u88c5\u5305\u3002\u53d7\u5f71\u54cd\u7528\u6237\u53ef\u91c7\u53d6\u4ee5\u4e0b\u89e3\u51b3\u65b9\u6848\uff1a<\/p>\n<p>1\u3001\u66f4\u65b0Tomcat\u670d\u52a1\u5668\u7248\u672c\uff1a<\/p>\n<p>\uff081\uff09\u9488\u5bf9Ubuntu\u516c\u544a\u94fe\u63a5<\/p>\n<p>http:\/\/www.ubuntu.com\/usn\/usn-3081-1\/<\/p>\n<p>\uff082\uff09\u9488\u5bf9Debian\u516c\u544a\u94fe\u63a5<\/p>\n<p>https:\/\/lists.debian.org\/debian-security-announce\/2016\/msg00249.html<\/p>\n<p>https:\/\/www.debian.org\/security\/2016\/dsa-3669<\/p>\n<p>https:\/\/www.debian.org\/security\/2016\/dsa-3670<\/p>\n<p>2\u3001\u52a0\u5165-h\u53c2\u6570\u9632\u6b62\u5176\u4ed6\u6587\u4ef6\u6240\u6709\u8005\u88ab\u66f4\u6539\uff0c\u5373\u66f4\u6539Tomcat\u7684\u542f\u52a8\u811a\u672c\u4e3a\uff1a<\/p>\n<p>chown -h $TOMCAT6_USER \u201c$CATALINA_PID\u201d\u201c$CATALINA_BASE\u201d\/logs\/catalina.out<\/p>\n<p>\u672c\u62a5\u544a\u7531CNNVD\u6280\u672f\u652f\u6491\u5355\u4f4d\u2014\u676d\u5dde\u5b89\u6052\u4fe1\u606f\u6280\u672f\u6709\u9650\u516c\u53f8\u63d0\u4f9b\u652f\u6301\u3002<\/p>\n<p>CNNVD\u5c06\u7ee7\u7eed\u8ddf\u8e2a\u4e0a\u8ff0\u6f0f\u6d1e\u7684\u76f8\u5173\u60c5\u51b5\uff0c\u53ca\u65f6\u53d1\u5e03\u76f8\u5173\u4fe1\u606f\u3002\u5982\u6709\u9700\u8981\uff0c\u53ef\u4e0eCNNVD\u8054\u7cfb\u3002<\/p>\n<p>\u8054\u7cfb\u65b9\u5f0f\uff1acnnvd@itsec.gov.cn\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u8fd1\u65e5\uff0c\u4e92\u8054\u7f51\u4e0a\u62ab\u9732\u4e86\u5173\u4e8eTomcat\u542f\u52a8\u811a\u672c\u5b58\u5728\u672c\u5730\u63d0\u6743\u6f0f\u6d1e\uff08CNNVD-201609-410\uff09\u7684\u60c5\u51b5\u3002\u5728\u57fa\u4e8edeb\u5b89\u88c5\u683c\u5f0f\u7684\u64cd\u4f5c\u7cfb\u7edf\uff08\u5982Debian\u3001Ubuntu\u7b49\uff09\u4e0b\uff0c\u4f7f\u7528Tomcat\u5b89\u88c5\u5305\u751f\u6210\u7684\u521d\u59cb\u5316\u811a\u672c\u5b58\u5728\u6b64\u6f0f\u6d1e\uff0c\u5177\u6709\u666e\u901a\u7528\u6237\u6743\u9650\u7684\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u4fee\u6539\u4e3b\u673a\u4efb\u610f\u6587\u4ef6\uff0c\u5728Tomcat\u91cd\u542f\u540e\u53ef\u8fdb\u4e00\u6b65\u63d0\u5347\u6743\u9650\u81f3\u8d85\u7ea7\u7ba1\u7406\u5458\u4ee5\u5b8c\u5168\u63a7\u5236\u670d\u52a1\u5668 \u3002\u76ee\u524d\uff0c\u76f8\u5173\u64cd\u4f5c\u7cfb\u7edf\u5382\u5546\u5df2\u4fee\u590d\u8be5\u6f0f\u6d1e\u3002<\/p>\n","protected":false},"author":2,"featured_media":4635,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_bbp_topic_count":0,"_bbp_reply_count":0,"_bbp_total_topic_count":0,"_bbp_total_reply_count":0,"_bbp_voice_count":0,"_bbp_anonymous_reply_count":0,"_bbp_topic_count_hidden":0,"_bbp_reply_count_hidden":0,"_bbp_forum_subforum_count":0,"footnotes":""},"categories":[27],"tags":[17,29,9,26,13,10,11,20],"collection":[276],"_links":{"self":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/posts\/4634"}],"collection":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/comments?post=4634"}],"version-history":[{"count":1,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/posts\/4634\/revisions"}],"predecessor-version":[{"id":6153,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/posts\/4634\/revisions\/6153"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/media\/4635"}],"wp:attachment":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/media?parent=4634"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/categories?post=4634"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/tags?post=4634"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/collection?post=4634"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}