RHSA-2020:0161
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 8 security update
CVSS Metrics
- v3.0•HIGH•Score: 8.1CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Systems
- redhat•eap7-apache-cxf
< 0:3.2.11-1.redhat_00001.1.el8eap
- redhat•eap7-apache-cxf-rt
< 0:3.2.11-1.redhat_00001.1.el8eap
- redhat•eap7-apache-cxf-services
< 0:3.2.11-1.redhat_00001.1.el8eap
- redhat•eap7-apache-cxf-tools
< 0:3.2.11-1.redhat_00001.1.el8eap
- redhat•eap7-glassfish-jsf
< 0:2.3.5-6.SP3_redhat_00004.1.el8eap
- redhat•eap7-hal-console
< 0:3.0.19-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate
< 0:5.3.14-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-core
< 0:5.3.14-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-entitymanager
< 0:5.3.14-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-envers
< 0:5.3.14-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-java8
< 0:5.3.14-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-validator
< 0:6.0.18-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-validator-cdi
< 0:6.0.18-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jackson-annotations
< 0:2.9.10-1.redhat_00003.1.el8eap
- redhat•eap7-jackson-core
< 0:2.9.10-1.redhat_00003.1.el8eap
- redhat•eap7-jackson-databind
< 0:2.9.10.1-1.redhat_00001.1.el8eap
- redhat•eap7-jackson-dataformats-binary
< 0:2.9.10-1.redhat_00003.1.el8eap
- redhat•eap7-jackson-dataformats-text
< 0:2.9.10-1.redhat_00003.1.el8eap
- redhat•eap7-jackson-datatype-jdk8
< 0:2.9.10-1.redhat_00003.1.el8eap
- redhat•eap7-jackson-datatype-jsr310
< 0:2.9.10-1.redhat_00003.1.el8eap
- redhat•eap7-jackson-jaxrs-base
< 0:2.9.10-1.redhat_00003.1.el8eap
- redhat•eap7-jackson-jaxrs-json-provider
< 0:2.9.10-1.redhat_00003.1.el8eap
- redhat•eap7-jackson-jaxrs-providers
< 0:2.9.10-1.redhat_00003.1.el8eap
- redhat•eap7-jackson-module-jaxb-annotations
< 0:2.9.10-2.redhat_00003.1.el8eap
- redhat•eap7-jackson-modules-base
< 0:2.9.10-2.redhat_00003.1.el8eap
- redhat•eap7-jackson-modules-java8
< 0:2.9.10-1.redhat_00003.1.el8eap
- redhat•eap7-jberet
< 0:1.3.5-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jberet-core
< 0:1.3.5-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jboss-ejb-client
< 0:4.0.27-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jboss-jsf-api_2.3_spec
< 0:2.3.5-3.SP2_redhat_00001.1.el8eap
- redhat•eap7-jboss-server-migration
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-cli
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-core
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-eap6.4
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-eap6.4-to-eap7.2
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.0
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.0-to-eap7.2
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.1
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.1-to-eap7.2
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.2
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly10.0
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly10.0-to-eap7.2
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly10.1
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly10.1-to-eap7.2
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly11.0
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly11.0-to-eap7.2
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly12.0
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly12.0-to-eap7.2
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly13.0-server
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly14.0-server
< 0:1.3.1-7.Final_redhat_00007.1.el8eap
Showing first 50 affected entries in server-rendered view.
References (74)
- https://access.redhat.com/errata/RHSA-2020:0161
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=1738673
- https://bugzilla.redhat.com/show_bug.cgi?id=1755831
- https://bugzilla.redhat.com/show_bug.cgi?id=1755849
- https://bugzilla.redhat.com/show_bug.cgi?id=1758167
- https://bugzilla.redhat.com/show_bug.cgi?id=1758171
- https://bugzilla.redhat.com/show_bug.cgi?id=1758182
- https://bugzilla.redhat.com/show_bug.cgi?id=1758187
- https://bugzilla.redhat.com/show_bug.cgi?id=1758191
- https://bugzilla.redhat.com/show_bug.cgi?id=1758619
- https://bugzilla.redhat.com/show_bug.cgi?id=1770615
- https://bugzilla.redhat.com/show_bug.cgi?id=1772464
- https://bugzilla.redhat.com/show_bug.cgi?id=1775293
- https://issues.redhat.com/browse/JBEAP-17491
- https://issues.redhat.com/browse/JBEAP-17541
- https://issues.redhat.com/browse/JBEAP-17651
- https://issues.redhat.com/browse/JBEAP-17652
- https://issues.redhat.com/browse/JBEAP-17666
- https://issues.redhat.com/browse/JBEAP-17773
- https://issues.redhat.com/browse/JBEAP-17779
- https://issues.redhat.com/browse/JBEAP-17789
- https://issues.redhat.com/browse/JBEAP-17805
- https://issues.redhat.com/browse/JBEAP-17836
- https://issues.redhat.com/browse/JBEAP-17837
- https://issues.redhat.com/browse/JBEAP-17887
- https://issues.redhat.com/browse/JBEAP-17898
- https://issues.redhat.com/browse/JBEAP-17905
- https://issues.redhat.com/browse/JBEAP-17906
- https://issues.redhat.com/browse/JBEAP-17940
- https://issues.redhat.com/browse/JBEAP-17945
- https://issues.redhat.com/browse/JBEAP-17974
- https://issues.redhat.com/browse/JBEAP-17998
- https://issues.redhat.com/browse/JBEAP-18169
- https://issues.redhat.com/browse/JBEAP-18170
- https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0161.json
- https://access.redhat.com/security/cve/CVE-2019-10219
- https://www.cve.org/CVERecord?id=CVE-2019-10219
- https://nvd.nist.gov/vuln/detail/CVE-2019-10219
- https://github.com/hibernate/hibernate-validator/commit/124b7dd6d9a4ad24d4d49f74701f05a13e56cee
- https://github.com/hibernate/hibernate-validator/commit/20d729548511ac5cff6fd459f93de137195420fe
- https://access.redhat.com/security/cve/CVE-2019-14540
- https://www.cve.org/CVERecord?id=CVE-2019-14540
- https://nvd.nist.gov/vuln/detail/CVE-2019-14540
- https://access.redhat.com/security/cve/CVE-2019-14885
- https://www.cve.org/CVERecord?id=CVE-2019-14885
- https://nvd.nist.gov/vuln/detail/CVE-2019-14885
- https://access.redhat.com/security/cve/CVE-2019-14888
- https://www.cve.org/CVERecord?id=CVE-2019-14888
- https://nvd.nist.gov/vuln/detail/CVE-2019-14888
- https://access.redhat.com/security/cve/CVE-2019-14892
- https://www.cve.org/CVERecord?id=CVE-2019-14892
- https://nvd.nist.gov/vuln/detail/CVE-2019-14892
- https://access.redhat.com/security/cve/CVE-2019-14893
- https://www.cve.org/CVERecord?id=CVE-2019-14893
- https://nvd.nist.gov/vuln/detail/CVE-2019-14893
- https://access.redhat.com/security/cve/CVE-2019-16335
- https://www.cve.org/CVERecord?id=CVE-2019-16335
- https://nvd.nist.gov/vuln/detail/CVE-2019-16335
- https://access.redhat.com/security/cve/CVE-2019-16869
- https://www.cve.org/CVERecord?id=CVE-2019-16869
- https://nvd.nist.gov/vuln/detail/CVE-2019-16869
- https://access.redhat.com/security/cve/CVE-2019-16942
- https://www.cve.org/CVERecord?id=CVE-2019-16942
- https://nvd.nist.gov/vuln/detail/CVE-2019-16942
- https://access.redhat.com/security/cve/CVE-2019-16943
- https://www.cve.org/CVERecord?id=CVE-2019-16943
- https://nvd.nist.gov/vuln/detail/CVE-2019-16943
- https://access.redhat.com/security/cve/CVE-2019-17267
- https://www.cve.org/CVERecord?id=CVE-2019-17267
- https://nvd.nist.gov/vuln/detail/CVE-2019-17267
- https://access.redhat.com/security/cve/CVE-2019-17531
- https://www.cve.org/CVERecord?id=CVE-2019-17531
- https://nvd.nist.gov/vuln/detail/CVE-2019-17531