RHSA-2012:1592

Description

Red Hat Security Advisory: JBoss Enterprise Application Platform 6.0.1 update

CVSS Metrics

• v3.1•MEDIUM•Score: 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected Systems

• redhat•antlr-eap6

  < 0:2.7.7-15_redhat_2.ep6.el6

• redhat•apache-commons-beanutils

  < 0:1.8.3-10.redhat_2.ep6.el6

• redhat•apache-commons-cli

  < 0:1.2-7.5.redhat_2.ep6.el6.4

• redhat•apache-commons-codec-eap6

  < 0:1.4-14.redhat_2.ep6.el6.1

• redhat•apache-commons-collections-eap6

  < 0:3.2.1-13.redhat_2.ep6.el6.1

• redhat•apache-commons-configuration

  < 0:1.6-7.2.redhat_2.ep6.el6.5

• redhat•apache-commons-daemon-jsvc-eap6

  < 1:1.0.10-3.ep6.el6

• redhat•apache-commons-daemon-jsvc-eap6-debuginfo

  < 1:1.0.10-3.ep6.el6

• redhat•apache-commons-io-eap6

  < 0:2.1-6.redhat_2.ep6.el6.1

• redhat•apache-commons-lang-eap6

  < 0:2.6-5redhat_2.ep6.el6.1

• redhat•apache-commons-pool-eap6

  < 0:1.5.6-8.redhat_2.ep6.el6.1

• redhat•apache-cxf

  < 0:2.4.9-4.redhat_2.ep6.el6

• redhat•apache-cxf-xjc-utils

  < 0:2.4.0-11.redhat_2.ep6.el6.4

• redhat•apache-mime4j

  < 0:0.6-7.redhat_2.ep6.el6.5

• redhat•atinject

  < 0:1-8.2_redhat_2.ep6.el6.5

• redhat•cal10n

  < 0:0.7.3-8.redhat_2.ep6.el6.5

• redhat•codehaus-jackson

  < 0:1.9.2-6_redhat_2.ep6.el6.5

• redhat•codehaus-jackson-core-asl

  < 0:1.9.2-6_redhat_2.ep6.el6.5

• redhat•codehaus-jackson-jaxrs

  < 0:1.9.2-6_redhat_2.ep6.el6.5

• redhat•codehaus-jackson-mapper-asl

  < 0:1.9.2-6_redhat_2.ep6.el6.5

• redhat•codehaus-jackson-xc

  < 0:1.9.2-6_redhat_2.ep6.el6.5

• redhat•cxf-xjc-boolean

  < 0:2.4.0-11.redhat_2.ep6.el6.4

• redhat•cxf-xjc-dv

  < 0:2.4.0-11.redhat_2.ep6.el6.4

• redhat•cxf-xjc-ts

  < 0:2.4.0-11.redhat_2.ep6.el6.4

• redhat•dom4j

  < 0:1.6.1-14_redhat_3.ep6.el6

• redhat•glassfish-jaf

  < 0:1.1.1-14.redhat_2.ep6.el6.3

• redhat•glassfish-javamail

  < 0:1.4.4-16.redhat_2.ep6.el6

• redhat•glassfish-jaxb

  < 0:2.2.5-10_redhat_3.ep6.el6

• redhat•glassfish-jsf

  < 0:2.1.13-1_redhat_1.ep6.el6

• redhat•glassfish-jsf12

  < 0:1.2_15-8_b01_redhat_2.ep6.el6.4

• redhat•gnu-getopt

  < 0:1.0.13-1.2_redhat_2.ep6.el6.5

• redhat•guava

  < 0:11.0.2-0.5.redhat_2.ep6.el6.6

• redhat•guava-libraries

  < 0:11.0.2-0.5.redhat_2.ep6.el6.6

• redhat•h2database

  < 0:1.3.168-2_redhat_1.ep6.el6

• redhat•hibernate-beanvalidation-api

  < 0:1.0.0-4.7.GA_redhat_2.ep6.el6.3

• redhat•hibernate-jpa-2.0-api

  < 0:1.0.1-5.Final_redhat_2.1.ep6.el6.4

• redhat•hibernate3-commons-annotations

  < 0:4.0.1-5.Final_redhat_2.1.ep6.el6.3

• redhat•hibernate4

  < 0:4.1.6-7.Final_redhat_3.ep6.el6

• redhat•hibernate4-core

  < 0:4.1.6-7.Final_redhat_3.ep6.el6

• redhat•hibernate4-entitymanager

  < 0:4.1.6-7.Final_redhat_3.ep6.el6

• redhat•hibernate4-envers

  < 0:4.1.6-7.Final_redhat_3.ep6.el6

• redhat•hibernate4-infinispan

  < 0:4.1.6-7.Final_redhat_3.ep6.el6

• redhat•hibernate4-validator

  < 0:4.2.0-7.Final_redhat_2.1.ep6.el6.4

• redhat•hornetq

  < 0:2.2.23-1.Final_redhat_1.ep6.el6

• redhat•hornetq-native

  < 0:2.2.21-1.Final.ep6.el6

• redhat•hornetq-native-debuginfo

  < 0:2.2.21-1.Final.ep6.el6

• redhat•httpcomponents

  < 0:5-4_redhat_2.ep6.el6

• redhat•httpcomponents-httpclient

  < 0:4.1.3-4_redhat_2.ep6.el6

• redhat•httpcomponents-httpcore

  < 0:4.1.4-4_redhat_2.ep6.el6

• redhat•httpd

  < 0:2.2.22-14.ep6.el6

Showing first 50 affected entries in server-rendered view.

References (45)

• https://access.redhat.com/errata/RHSA-2012:1592
• https://access.redhat.com/security/updates/classification/#important
• https://access.redhat.com/knowledge/docs/
• https://bugzilla.redhat.com/show_bug.cgi?id=826533
• https://bugzilla.redhat.com/show_bug.cgi?id=826534
• https://bugzilla.redhat.com/show_bug.cgi?id=829560
• https://bugzilla.redhat.com/show_bug.cgi?id=843358
• https://bugzilla.redhat.com/show_bug.cgi?id=850794
• https://bugzilla.redhat.com/show_bug.cgi?id=851896
• https://bugzilla.redhat.com/show_bug.cgi?id=870868
• https://bugzilla.redhat.com/show_bug.cgi?id=870871
• https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_1592.json
• https://access.redhat.com/security/cve/CVE-2008-0455
• https://www.cve.org/CVERecord?id=CVE-2008-0455
• https://nvd.nist.gov/vuln/detail/CVE-2008-0455
• https://access.redhat.com/security/cve/CVE-2012-2378
• https://www.cve.org/CVERecord?id=CVE-2012-2378
• https://nvd.nist.gov/vuln/detail/CVE-2012-2378
• http://cxf.apache.org/cve-2012-2378.html
• https://access.redhat.com/security/cve/CVE-2012-2379
• https://www.cve.org/CVERecord?id=CVE-2012-2379
• https://nvd.nist.gov/vuln/detail/CVE-2012-2379
• http://cxf.apache.org/cve-2012-2379.html
• https://access.redhat.com/security/cve/CVE-2012-2672
• https://www.cve.org/CVERecord?id=CVE-2012-2672
• https://nvd.nist.gov/vuln/detail/CVE-2012-2672
• https://access.redhat.com/security/cve/CVE-2012-2687
• https://www.cve.org/CVERecord?id=CVE-2012-2687
• https://nvd.nist.gov/vuln/detail/CVE-2012-2687
• https://access.redhat.com/security/cve/CVE-2012-3428
• https://www.cve.org/CVERecord?id=CVE-2012-3428
• https://nvd.nist.gov/vuln/detail/CVE-2012-3428
• https://access.redhat.com/security/cve/CVE-2012-3451
• https://www.cve.org/CVERecord?id=CVE-2012-3451
• https://nvd.nist.gov/vuln/detail/CVE-2012-3451
• https://access.redhat.com/security/cve/CVE-2012-4549
• https://www.cve.org/CVERecord?id=CVE-2012-4549
• https://nvd.nist.gov/vuln/detail/CVE-2012-4549
• http://rhn.redhat.com/errata/RHSA-2012-1591.html
• http://rhn.redhat.com/errata/RHSA-2012-1592.html
• http://rhn.redhat.com/errata/RHSA-2012-1594.html
• http://secunia.com/advisories/51607
• https://access.redhat.com/security/cve/CVE-2012-4550
• https://www.cve.org/CVERecord?id=CVE-2012-4550
• https://nvd.nist.gov/vuln/detail/CVE-2012-4550