RHSA-2014:1087

Description

Red Hat Security Advisory: Red Hat JBoss Web Server 2.1.0 update

Affected Systems

• redhat•antlr-eap6

  < 0:2.7.7-17.redhat_4.1.ep6.el6

• redhat•apache-commons-collections-eap6

  < 0:3.2.1-15.redhat_3.1.ep6.el6

• redhat•apache-commons-collections-tomcat-eap6

  < 0:3.2.1-15.redhat_3.1.ep6.el6

• redhat•apache-commons-daemon-eap6

  < 1:1.0.15-5.redhat_1.ep6.el6

• redhat•apache-commons-daemon-jsvc-eap6

  < 1:1.0.15-6.redhat_2.ep6.el6

• redhat•apache-commons-daemon-jsvc-eap6-debuginfo

  < 1:1.0.15-6.redhat_2.ep6.el6

• redhat•apache-commons-logging-eap6

  < 0:1.1.1-7.9_redhat_1.ep6.el6

• redhat•apache-commons-logging-tomcat-eap6

  < 0:1.1.1-7.9_redhat_1.ep6.el6

• redhat•apache-commons-pool-eap6

  < 0:1.6-7.redhat_6.1.ep6.el6

• redhat•apache-commons-pool-tomcat-eap6

  < 0:1.6-7.redhat_6.1.ep6.el6

• redhat•dom4j-eap6

  < 0:1.6.1-20.redhat_6.1.ep6.el6

• redhat•ecj3

  < 1:3.7.2-9.redhat_3.1.ep6.el6

• redhat•hibernate4-c3p0-eap6

  < 0:4.2.14-3.SP1_redhat_1.1.ep6.el6

• redhat•hibernate4-core-eap6

  < 0:4.2.14-3.SP1_redhat_1.1.ep6.el6

• redhat•hibernate4-eap6

  < 0:4.2.14-3.SP1_redhat_1.1.ep6.el6

• redhat•hibernate4-entitymanager-eap6

  < 0:4.2.14-3.SP1_redhat_1.1.ep6.el6

• redhat•hibernate4-envers-eap6

  < 0:4.2.14-3.SP1_redhat_1.1.ep6.el6

• redhat•hibernate4-infinispan-eap6

  < 0:4.2.14-3.SP1_redhat_1.1.ep6.el6

• redhat•httpd

  < 0:2.2.26-35.ep6.el6

• redhat•httpd-debuginfo

  < 0:2.2.26-35.ep6.el6

• redhat•httpd-devel

  < 0:2.2.26-35.ep6.el6

• redhat•httpd-manual

  < 0:2.2.26-35.ep6.el6

• redhat•httpd-tools

  < 0:2.2.26-35.ep6.el6

• redhat•javassist-eap6

  < 0:3.18.1-1.GA_redhat_1.1.ep6.el6

• redhat•jboss-logging

  < 0:3.1.4-1.GA_redhat_1.1.ep6.el6

• redhat•jboss-transaction-api_1.1_spec

  < 0:1.0.1-12.Final_redhat_2.2.ep6.el6

• redhat•mod_cluster

  < 0:1.2.9-1.Final_redhat_1.1.ep6.el6

• redhat•mod_cluster-native

  < 0:1.2.9-3.Final_redhat_2.ep6.el6

• redhat•mod_cluster-native-debuginfo

  < 0:1.2.9-3.Final_redhat_2.ep6.el6

• redhat•mod_cluster-tomcat6

  < 0:1.2.9-1.Final_redhat_1.1.ep6.el6

• redhat•mod_cluster-tomcat7

  < 0:1.2.9-1.Final_redhat_1.1.ep6.el6

• redhat•mod_jk

  < 0:1.2.40-2.redhat_1.ep6.el6

• redhat•mod_jk-ap22

  < 0:1.2.40-2.redhat_1.ep6.el6

• redhat•mod_jk-debuginfo

  < 0:1.2.40-2.redhat_1.ep6.el6

• redhat•mod_jk-manual

  < 0:1.2.40-2.redhat_1.ep6.el6

• redhat•mod_rt

  < 0:2.4.1-6.GA.ep6.el6

• redhat•mod_rt-debuginfo

  < 0:2.4.1-6.GA.ep6.el6

• redhat•mod_snmp

  < 0:2.4.1-13.GA.ep6.el6

• redhat•mod_snmp-debuginfo

  < 0:2.4.1-13.GA.ep6.el6

• redhat•mod_ssl

  < 1:2.2.26-35.ep6.el6

• redhat•storeconfig-tc6

  < 0:0.0.1-7.Alpha3_redhat_12.3.ep6.el6

• redhat•storeconfig-tc7

  < 0:0.0.1-7.Alpha3_redhat_12.5.ep6.el6

• redhat•tomcat-native

  < 0:1.1.30-2.redhat_1.ep6.el6

• redhat•tomcat-native-debuginfo

  < 0:1.1.30-2.redhat_1.ep6.el6

• redhat•tomcat6

  < 0:6.0.41-5_patch_02.ep6.el6

• redhat•tomcat6-admin-webapps

  < 0:6.0.41-5_patch_02.ep6.el6

• redhat•tomcat6-docs-webapp

  < 0:6.0.41-5_patch_02.ep6.el6

• redhat•tomcat6-el-2.1-api

  < 0:6.0.41-5_patch_02.ep6.el6

• redhat•tomcat6-javadoc

  < 0:6.0.41-5_patch_02.ep6.el6

• redhat•tomcat6-jsp-2.1-api

  < 0:6.0.41-5_patch_02.ep6.el6

Showing first 50 affected entries in server-rendered view.

References (31)

• https://access.redhat.com/errata/RHSA-2014:1087
• https://access.redhat.com/security/updates/classification/#important
• https://access.redhat.com/documentation/en-US/JBoss_Enterprise_Web_Server/2.1/html/2.1.0_Release_Notes/index.html
• https://bugzilla.redhat.com/show_bug.cgi?id=1069911
• https://bugzilla.redhat.com/show_bug.cgi?id=1102038
• https://bugzilla.redhat.com/show_bug.cgi?id=1120596
• https://bugzilla.redhat.com/show_bug.cgi?id=1120601
• https://bugzilla.redhat.com/show_bug.cgi?id=1120603
• https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_1087.json
• https://access.redhat.com/security/cve/CVE-2013-4590
• https://www.cve.org/CVERecord?id=CVE-2013-4590
• https://nvd.nist.gov/vuln/detail/CVE-2013-4590
• https://access.redhat.com/security/cve/CVE-2014-0118
• https://www.cve.org/CVERecord?id=CVE-2014-0118
• https://nvd.nist.gov/vuln/detail/CVE-2014-0118
• http://httpd.apache.org/security/vulnerabilities_24.html
• https://access.redhat.com/security/cve/CVE-2014-0119
• https://www.cve.org/CVERecord?id=CVE-2014-0119
• https://nvd.nist.gov/vuln/detail/CVE-2014-0119
• https://access.redhat.com/security/cve/CVE-2014-0226
• https://www.cve.org/CVERecord?id=CVE-2014-0226
• https://nvd.nist.gov/vuln/detail/CVE-2014-0226
• https://access.redhat.com/security/cve/CVE-2014-0227
• https://bugzilla.redhat.com/show_bug.cgi?id=1109196
• https://www.cve.org/CVERecord?id=CVE-2014-0227
• https://nvd.nist.gov/vuln/detail/CVE-2014-0227
• https://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.43
• https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.55
• https://access.redhat.com/security/cve/CVE-2014-0231
• https://www.cve.org/CVERecord?id=CVE-2014-0231
• https://nvd.nist.gov/vuln/detail/CVE-2014-0231