RHSA-2017:0831

Description

Red Hat Security Advisory: JBoss Enterprise Application Platform 7.0.5 on RHEL 6

CVSS Metrics

• v3.0•HIGH•Score: 7.5CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Systems

• redhat•eap7-activemq-artemis

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-cli

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-commons

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-core-client

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-dto

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-hornetq-protocol

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-hqclient-protocol

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-jms-client

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-jms-server

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-journal

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-native

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-ra

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-selector

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-server

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-activemq-artemis-service-extensions

  < 0:1.1.0-16.SP19_redhat_1.1.ep7.el6

• redhat•eap7-artemis-native

  < 0:1.1.0-12.redhat_4.ep7.el6

• redhat•eap7-artemis-native-wildfly

  < 0:1.1.0-12.redhat_4.ep7.el6

• redhat•eap7-hibernate

  < 0:5.0.12-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-hibernate-core

  < 0:5.0.12-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-hibernate-entitymanager

  < 0:5.0.12-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-hibernate-envers

  < 0:5.0.12-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-hibernate-infinispan

  < 0:5.0.12-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-hibernate-java8

  < 0:5.0.12-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-infinispan

  < 0:8.1.7-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-infinispan-cachestore-jdbc

  < 0:8.1.7-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-infinispan-cachestore-remote

  < 0:8.1.7-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-infinispan-client-hotrod

  < 0:8.1.7-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-infinispan-commons

  < 0:8.1.7-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-infinispan-core

  < 0:8.1.7-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-jboss-msc

  < 0:1.2.7-1.SP1_redhat_1.1.ep7.el6

• redhat•eap7-jboss-xnio-base

  < 0:3.4.3-2.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana-compensations

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana-jbosstxbridge

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana-jbossxts

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana-jts-idlj

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana-jts-integration

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana-restat-api

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana-restat-bridge

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana-restat-integration

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana-restat-util

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-narayana-txframework

  < 0:5.2.22-1.Final_redhat_1.1.ep7.el6

• redhat•eap7-netty

  < 0:4.0.35-2.Final_redhat_1.1.ep7.el6

• redhat•eap7-netty-all

  < 0:4.0.35-2.Final_redhat_1.1.ep7.el6

• redhat•eap7-picketlink-api

  < 0:2.5.5-6.SP6_redhat_1.1.ep7.el6

• redhat•eap7-picketlink-bindings

  < 0:2.5.5-6.SP6_redhat_1.1.ep7.el6

• redhat•eap7-picketlink-common

  < 0:2.5.5-6.SP6_redhat_1.1.ep7.el6

• redhat•eap7-picketlink-config

  < 0:2.5.5-6.SP6_redhat_1.1.ep7.el6

• redhat•eap7-picketlink-federation

  < 0:2.5.5-6.SP6_redhat_1.1.ep7.el6

• redhat•eap7-picketlink-idm-api

  < 0:2.5.5-6.SP6_redhat_1.1.ep7.el6

Showing first 50 affected entries in server-rendered view.

References (15)

• https://access.redhat.com/errata/RHSA-2017:0831
• https://access.redhat.com/security/updates/classification/#important
• https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/version-7.0/
• https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/version-7.0/installation-guide/
• https://access.redhat.com/documentation/en/jboss-enterprise-application-platform/
• https://bugzilla.redhat.com/show_bug.cgi?id=1400344
• https://bugzilla.redhat.com/show_bug.cgi?id=1404782
• https://issues.redhat.com/browse/JBEAP-6995
• https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_0831.json
• https://access.redhat.com/security/cve/CVE-2016-8656
• https://www.cve.org/CVERecord?id=CVE-2016-8656
• https://nvd.nist.gov/vuln/detail/CVE-2016-8656
• https://access.redhat.com/security/cve/CVE-2016-9589
• https://www.cve.org/CVERecord?id=CVE-2016-9589
• https://nvd.nist.gov/vuln/detail/CVE-2016-9589