RHSA-2015:1622
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: Red Hat JBoss Web Server 2.1.0 tomcat security update
Affected Systems
- redhat•tomcat6
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat6-admin-webapps
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat6-docs-webapp
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat6-el-2.1-api
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat6-javadoc
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat6-jsp-2.1-api
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat6-lib
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat6-log4j
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat6-maven-devel
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat6-servlet-2.5-api
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat6-webapps
< 0:6.0.41-15_patch_04.ep6.el5 | < 0:6.0.41-15_patch_04.ep6.el6 | < 0:6.0.41-15_patch_04.ep6.el7
- redhat•tomcat7
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
- redhat•tomcat7-admin-webapps
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
- redhat•tomcat7-docs-webapp
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
- redhat•tomcat7-el-2.2-api
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
- redhat•tomcat7-javadoc
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
- redhat•tomcat7-jsp-2.2-api
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
- redhat•tomcat7-lib
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
- redhat•tomcat7-log4j
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
- redhat•tomcat7-maven-devel
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
- redhat•tomcat7-servlet-3.0-api
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
- redhat•tomcat7-webapps
< 0:7.0.54-19_patch_04.ep6.el5 | < 0:7.0.54-19_patch_04.ep6.el6 | < 0:7.0.54-20_patch_04.ep6.el7
References (16)
- https://access.redhat.com/errata/RHSA-2015:1622
- https://access.redhat.com/security/updates/classification/#moderate
- https://bugzilla.redhat.com/show_bug.cgi?id=1191200
- https://bugzilla.redhat.com/show_bug.cgi?id=1222573
- https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_1622.json
- https://access.redhat.com/security/cve/CVE-2014-0230
- https://www.cve.org/CVERecord?id=CVE-2014-0230
- https://nvd.nist.gov/vuln/detail/CVE-2014-0230
- http://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.44
- http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.55
- http://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.0.9
- https://access.redhat.com/security/cve/CVE-2014-7810
- https://www.cve.org/CVERecord?id=CVE-2014-7810
- https://nvd.nist.gov/vuln/detail/CVE-2014-7810
- http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.59
- http://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.0.17