RHSA-2021:0248
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.5 security update
CVSS Metrics
- v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Systems
- redhat•eap7-activemq-artemis
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-cli
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-commons
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-core-client
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-dto
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-hornetq-protocol
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-hqclient-protocol
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-jdbc-store
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-jms-client
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-jms-server
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-journal
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-ra
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-selector
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-server
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-service-extensions
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-activemq-artemis-tools
< 0:2.9.0-7.redhat_00017.1.el8eap
- redhat•eap7-glassfish-jsf
< 0:2.3.9-12.SP13_redhat_00001.1.el8eap
- redhat•eap7-hal-console
< 0:3.2.12-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate
< 0:5.3.20-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-core
< 0:5.3.20-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-entitymanager
< 0:5.3.20-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-envers
< 0:5.3.20-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-java8
< 0:5.3.20-1.Final_redhat_00001.1.el8eap
- redhat•eap7-httpcomponents-client
< 0:4.5.13-1.redhat_00001.1.el8eap
- redhat•eap7-jboss-ejb-client
< 0:4.0.37-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jboss-genericjms
< 0:2.0.8-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jboss-modules
< 0:1.11.0-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jboss-remoting
< 0:5.0.20-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jboss-server-migration
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-cli
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-core
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-eap6.4
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-eap6.4-to-eap7.3
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.0
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.1
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.2
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.2-to-eap7.3
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.3-server
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly10.0
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly10.1
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly11.0
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly12.0
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly13.0-server
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly14.0-server
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly15.0-server
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly16.0-server
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly17.0-server
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly18.0-server
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly8.2
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly9.0
< 0:1.7.2-4.Final_redhat_00005.1.el8eap
Showing first 50 affected entries in server-rendered view.
References (51)
- https://access.redhat.com/errata/RHSA-2021:0248
- https://access.redhat.com/security/updates/classification/#important
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/
- https://bugzilla.redhat.com/show_bug.cgi?id=1879042
- https://bugzilla.redhat.com/show_bug.cgi?id=1881637
- https://bugzilla.redhat.com/show_bug.cgi?id=1886587
- https://bugzilla.redhat.com/show_bug.cgi?id=1893070
- https://bugzilla.redhat.com/show_bug.cgi?id=1901304
- https://bugzilla.redhat.com/show_bug.cgi?id=1904060
- https://issues.redhat.com/browse/JBEAP-19788
- https://issues.redhat.com/browse/JBEAP-19790
- https://issues.redhat.com/browse/JBEAP-19816
- https://issues.redhat.com/browse/JBEAP-20240
- https://issues.redhat.com/browse/JBEAP-20268
- https://issues.redhat.com/browse/JBEAP-20271
- https://issues.redhat.com/browse/JBEAP-20286
- https://issues.redhat.com/browse/JBEAP-20288
- https://issues.redhat.com/browse/JBEAP-20333
- https://issues.redhat.com/browse/JBEAP-20373
- https://issues.redhat.com/browse/JBEAP-20376
- https://issues.redhat.com/browse/JBEAP-20399
- https://issues.redhat.com/browse/JBEAP-20403
- https://issues.redhat.com/browse/JBEAP-20405
- https://issues.redhat.com/browse/JBEAP-20438
- https://issues.redhat.com/browse/JBEAP-20480
- https://issues.redhat.com/browse/JBEAP-20502
- https://issues.redhat.com/browse/JBEAP-20521
- https://issues.redhat.com/browse/JBEAP-20591
- https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0248.json
- https://access.redhat.com/security/cve/CVE-2020-13956
- https://www.cve.org/CVERecord?id=CVE-2020-13956
- https://nvd.nist.gov/vuln/detail/CVE-2020-13956
- https://www.openwall.com/lists/oss-security/2020/10/08/4
- https://access.redhat.com/security/cve/CVE-2020-25633
- https://www.cve.org/CVERecord?id=CVE-2020-25633
- https://nvd.nist.gov/vuln/detail/CVE-2020-25633
- https://access.redhat.com/security/cve/CVE-2020-25640
- https://www.cve.org/CVERecord?id=CVE-2020-25640
- https://nvd.nist.gov/vuln/detail/CVE-2020-25640
- https://github.com/amqphub/amqp-10-resource-adapter/issues/13
- https://access.redhat.com/security/cve/CVE-2020-25689
- https://www.cve.org/CVERecord?id=CVE-2020-25689
- https://nvd.nist.gov/vuln/detail/CVE-2020-25689
- https://access.redhat.com/security/cve/CVE-2020-27782
- https://www.cve.org/CVERecord?id=CVE-2020-27782
- https://nvd.nist.gov/vuln/detail/CVE-2020-27782
- https://access.redhat.com/security/cve/CVE-2020-27822
- https://www.cve.org/CVERecord?id=CVE-2020-27822
- https://nvd.nist.gov/vuln/detail/CVE-2020-27822
- https://issues.redhat.com/browse/WFLY-14094