A certain tomcat7 package for Apache Tomcat 7 in Red Hat Enterprise Linux (RHEL) 7 allows remote attackers to cause a denial of service (CPU consumption) via a crafted request. NOTE: this vulnerability exists because of an unspecified regression.Referenceshttps://rhn.redhat.com/errata/RHSA-2014-0686.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=1089884http://www.osvdb.org/108060https://security-tracker.debian.org/tracker/CVE-2014-0186
