RHSA-2021:3468
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.9 security update on RHEL 8
CVSS Metrics
- v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Systems
- redhat•eap7-apache-commons-io
< 0:2.10.0-1.redhat_00001.1.el8eap
- redhat•eap7-hal-console
< 0:3.2.16-1.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate
< 0:5.3.20-4.SP2_redhat_00001.1.el8eap
- redhat•eap7-hibernate-core
< 0:5.3.20-4.SP2_redhat_00001.1.el8eap
- redhat•eap7-hibernate-entitymanager
< 0:5.3.20-4.SP2_redhat_00001.1.el8eap
- redhat•eap7-hibernate-envers
< 0:5.3.20-4.SP2_redhat_00001.1.el8eap
- redhat•eap7-hibernate-java8
< 0:5.3.20-4.SP2_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar
< 0:1.4.35-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-common-api
< 0:1.4.35-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-common-impl
< 0:1.4.35-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-common-spi
< 0:1.4.35-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-core-api
< 0:1.4.35-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-core-impl
< 0:1.4.35-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-deployers-common
< 0:1.4.35-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-jdbc
< 0:1.4.35-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-validator
< 0:1.4.35-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jakarta-el
< 0:3.0.3-2.redhat_00006.1.el8eap
- redhat•eap7-jberet
< 0:1.3.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jberet-core
< 0:1.3.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jboss-remoting
< 0:5.0.23-2.SP1_redhat_00001.1.el8eap
- redhat•eap7-jboss-server-migration
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-cli
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-core
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-eap6.4
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-eap6.4-to-eap7.3
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.0
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.1
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.2
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.2-to-eap7.3
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-eap7.3-server
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly10.0
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly10.1
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly11.0
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly12.0
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly13.0-server
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly14.0-server
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly15.0-server
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly16.0-server
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly17.0-server
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly18.0-server
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly8.2
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-jboss-server-migration-wildfly9.0
< 0:1.7.2-9.Final_redhat_00010.1.el8eap
- redhat•eap7-narayana
< 0:5.9.12-1.Final_redhat_00001.1.el8eap
- redhat•eap7-narayana-compensations
< 0:5.9.12-1.Final_redhat_00001.1.el8eap
- redhat•eap7-narayana-jbosstxbridge
< 0:5.9.12-1.Final_redhat_00001.1.el8eap
- redhat•eap7-narayana-jbossxts
< 0:5.9.12-1.Final_redhat_00001.1.el8eap
- redhat•eap7-narayana-jts-idlj
< 0:5.9.12-1.Final_redhat_00001.1.el8eap
- redhat•eap7-narayana-jts-integration
< 0:5.9.12-1.Final_redhat_00001.1.el8eap
- redhat•eap7-narayana-restat-api
< 0:5.9.12-1.Final_redhat_00001.1.el8eap
- redhat•eap7-narayana-restat-bridge
< 0:5.9.12-1.Final_redhat_00001.1.el8eap
Showing first 50 affected entries in server-rendered view.
References (41)
- https://access.redhat.com/errata/RHSA-2021:3468
- https://access.redhat.com/security/updates/classification/#important
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.3/html-single/installation_guide/
- https://bugzilla.redhat.com/show_bug.cgi?id=1948752
- https://bugzilla.redhat.com/show_bug.cgi?id=1965497
- https://bugzilla.redhat.com/show_bug.cgi?id=1970930
- https://bugzilla.redhat.com/show_bug.cgi?id=1976052
- https://bugzilla.redhat.com/show_bug.cgi?id=1991299
- https://issues.redhat.com/browse/JBEAP-21466
- https://issues.redhat.com/browse/JBEAP-21468
- https://issues.redhat.com/browse/JBEAP-21958
- https://issues.redhat.com/browse/JBEAP-22003
- https://issues.redhat.com/browse/JBEAP-22029
- https://issues.redhat.com/browse/JBEAP-22079
- https://issues.redhat.com/browse/JBEAP-22085
- https://issues.redhat.com/browse/JBEAP-22138
- https://issues.redhat.com/browse/JBEAP-22159
- https://issues.redhat.com/browse/JBEAP-22195
- https://issues.redhat.com/browse/JBEAP-22198
- https://issues.redhat.com/browse/JBEAP-22200
- https://issues.redhat.com/browse/JBEAP-22204
- https://issues.redhat.com/browse/JBEAP-22227
- https://issues.redhat.com/browse/JBEAP-22317
- https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_3468.json
- https://access.redhat.com/security/cve/CVE-2021-3597
- https://www.cve.org/CVERecord?id=CVE-2021-3597
- https://nvd.nist.gov/vuln/detail/CVE-2021-3597
- https://access.redhat.com/security/cve/CVE-2021-3644
- https://www.cve.org/CVERecord?id=CVE-2021-3644
- https://nvd.nist.gov/vuln/detail/CVE-2021-3644
- https://access.redhat.com/security/cve/CVE-2021-3690
- https://www.cve.org/CVERecord?id=CVE-2021-3690
- https://nvd.nist.gov/vuln/detail/CVE-2021-3690
- https://access.redhat.com/security/cve/CVE-2021-28170
- https://www.cve.org/CVERecord?id=CVE-2021-28170
- https://nvd.nist.gov/vuln/detail/CVE-2021-28170
- https://securitylab.github.com/advisories/GHSL-2020-021-jakarta-el/
- https://access.redhat.com/security/cve/CVE-2021-29425
- https://www.cve.org/CVERecord?id=CVE-2021-29425
- https://nvd.nist.gov/vuln/detail/CVE-2021-29425