CVE-2014-0186 Information

Description

A certain tomcat7 package for Apache Tomcat 7 in Red Hat Enterprise Linux (RHEL) 7 allows remote attackers to cause a denial of service (CPU consumption) via a crafted request. NOTE: this vulnerability exists because of an unspecified regression.

Reference

http://www.osvdb.org/108060 https://bugzilla.redhat.com/show_bug.cgi?id=1089884 https://rhn.redhat.com/errata/RHSA-2014-0686.html https://security-tracker.debian.org/tracker/CVE-2014-0186