RHSA-2022:5893
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.6 Security update
CVSS Metrics
- v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Systems
- redhat•eap7-gson
< 0:2.8.9-1.redhat_00001.1.el8eap
- redhat•eap7-hal-console
< 0:3.3.13-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-all
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-buffer
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-dns
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-haproxy
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-http
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-http2
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-memcache
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-mqtt
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-redis
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-smtp
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-socks
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-stomp
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-codec-xml
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-common
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-handler
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-handler-proxy
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-resolver
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-resolver-dns
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-resolver-dns-classes-macos
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-transport
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-transport-classes-epoll
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-transport-classes-kqueue
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-transport-native-unix-common
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-transport-rxtx
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-transport-sctp
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
- redhat•eap7-netty-transport-udt
< 0:4.1.77-1.Final_redhat_00001.1.el8eap
References (43)
- https://access.redhat.com/errata/RHSA-2022:5893
- https://access.redhat.com/security/updates/classification/#moderate
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/
- https://bugzilla.redhat.com/show_bug.cgi?id=2066009
- https://bugzilla.redhat.com/show_bug.cgi?id=2080850
- https://bugzilla.redhat.com/show_bug.cgi?id=2087186
- https://issues.redhat.com/browse/JBEAP-17119
- https://issues.redhat.com/browse/JBEAP-23344
- https://issues.redhat.com/browse/JBEAP-23361
- https://issues.redhat.com/browse/JBEAP-23444
- https://issues.redhat.com/browse/JBEAP-23492
- https://issues.redhat.com/browse/JBEAP-23526
- https://issues.redhat.com/browse/JBEAP-23528
- https://issues.redhat.com/browse/JBEAP-23546
- https://issues.redhat.com/browse/JBEAP-23550
- https://issues.redhat.com/browse/JBEAP-23551
- https://issues.redhat.com/browse/JBEAP-23554
- https://issues.redhat.com/browse/JBEAP-23556
- https://issues.redhat.com/browse/JBEAP-23557
- https://issues.redhat.com/browse/JBEAP-23559
- https://issues.redhat.com/browse/JBEAP-23561
- https://issues.redhat.com/browse/JBEAP-23566
- https://issues.redhat.com/browse/JBEAP-23571
- https://issues.redhat.com/browse/JBEAP-23626
- https://issues.redhat.com/browse/JBEAP-23659
- https://issues.redhat.com/browse/JBEAP-23671
- https://issues.redhat.com/browse/JBEAP-23686
- https://issues.redhat.com/browse/JBEAP-23726
- https://issues.redhat.com/browse/JBEAP-23728
- https://issues.redhat.com/browse/JBEAP-23806
- https://issues.redhat.com/browse/JBEAP-23807
- https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_5893.json
- https://access.redhat.com/security/cve/CVE-2021-44906
- https://www.cve.org/CVERecord?id=CVE-2021-44906
- https://nvd.nist.gov/vuln/detail/CVE-2021-44906
- https://github.com/advisories/GHSA-xvch-5gv4-984h
- https://access.redhat.com/security/cve/CVE-2022-24823
- https://www.cve.org/CVERecord?id=CVE-2022-24823
- https://nvd.nist.gov/vuln/detail/CVE-2022-24823
- https://access.redhat.com/security/cve/CVE-2022-25647
- https://www.cve.org/CVERecord?id=CVE-2022-25647
- https://nvd.nist.gov/vuln/detail/CVE-2022-25647