RHSA-2022:5894
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.6 Security update.
CVSS Metrics
- v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Systems
- redhat•eap7
< 0:1-18.el9eap
- redhat•eap7-activemq-artemis
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-cli
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-commons
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-core-client
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-dto
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-hornetq-protocol
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-hqclient-protocol
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-jdbc-store
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-jms-client
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-jms-server
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-journal
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-native
< 1:1.0.2-1.redhat_00001.1.el9eap
- redhat•eap7-activemq-artemis-ra
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-selector
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-server
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-service-extensions
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-activemq-artemis-tools
< 0:2.16.0-9.redhat_00042.1.el9eap
- redhat•eap7-aesh-extensions
< 0:1.8.0-1.redhat_00001.1.el9eap
- redhat•eap7-aesh-readline
< 0:2.2.0-1.redhat_00001.1.el9eap
- redhat•eap7-agroal
< 0:1.3.0-1.redhat_00001.1.el9eap
- redhat•eap7-agroal-api
< 0:1.3.0-1.redhat_00001.1.el9eap
- redhat•eap7-agroal-narayana
< 0:1.3.0-1.redhat_00001.1.el9eap
- redhat•eap7-agroal-pool
< 0:1.3.0-1.redhat_00001.1.el9eap
- redhat•eap7-antlr
< 0:2.7.7-54.redhat_7.1.el9eap
- redhat•eap7-apache-commons-beanutils
< 0:1.9.4-1.redhat_00002.1.el9eap
- redhat•eap7-apache-commons-cli
< 0:1.4.0-1.redhat_00001.1.el9eap
- redhat•eap7-apache-commons-codec
< 0:1.15.0-1.redhat_00001.1.el9eap
- redhat•eap7-apache-commons-collections
< 0:3.2.2-9.redhat_2.1.el9eap
- redhat•eap7-apache-commons-io
< 0:2.10.0-1.redhat_00001.1.el9eap
- redhat•eap7-apache-commons-lang
< 0:3.11.0-1.redhat_00001.1.el9eap
- redhat•eap7-apache-commons-lang2
< 0:2.6.0-1.redhat_7.1.el9eap
- redhat•eap7-apache-cxf
< 0:3.3.13-1.redhat_00001.1.el9eap
- redhat•eap7-apache-cxf-rt
< 0:3.3.13-1.redhat_00001.1.el9eap
- redhat•eap7-apache-cxf-services
< 0:3.3.13-1.redhat_00001.1.el9eap
- redhat•eap7-apache-cxf-tools
< 0:3.3.13-1.redhat_00001.1.el9eap
- redhat•eap7-apache-cxf-xjc-utils
< 0:3.3.1-1.1.redhat_00001.1.el9eap
- redhat•eap7-apache-mime4j
< 0:0.6.0-4.1.redhat_7.1.el9eap
- redhat•eap7-apache-sshd
< 0:2.7.0-1.redhat_00001.1.el9eap
- redhat•eap7-artemis-native
< 1:1.0.2-3.redhat_1.el9eap
- redhat•eap7-artemis-native-wildfly
< 1:1.0.2-3.redhat_1.el9eap
- redhat•eap7-artemis-wildfly-integration
< 0:1.0.4-1.redhat_00001.1.el9eap
- redhat•eap7-atinject
< 0:1.0.3-1.redhat_00001.1.el9eap
- redhat•eap7-avro
< 0:1.7.6-7.1.redhat_2.1.el9eap
- redhat•eap7-azure-storage
< 0:8.6.6-1.1.redhat_00001.1.el9eap
- redhat•eap7-bouncycastle
< 0:1.68.0-2.redhat_00005.1.el9eap
- redhat•eap7-bouncycastle-mail
< 0:1.68.0-2.redhat_00005.1.el9eap
- redhat•eap7-bouncycastle-pg
< 0:1.68.0-2.redhat_00005.1.el9eap
- redhat•eap7-bouncycastle-pkix
< 0:1.68.0-2.redhat_00005.1.el9eap
- redhat•eap7-bouncycastle-prov
< 0:1.68.0-2.redhat_00005.1.el9eap
Showing first 50 affected entries in server-rendered view.
References (43)
- https://access.redhat.com/errata/RHSA-2022:5894
- https://access.redhat.com/security/updates/classification/#moderate
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/
- https://bugzilla.redhat.com/show_bug.cgi?id=2066009
- https://bugzilla.redhat.com/show_bug.cgi?id=2080850
- https://bugzilla.redhat.com/show_bug.cgi?id=2087186
- https://issues.redhat.com/browse/JBEAP-17119
- https://issues.redhat.com/browse/JBEAP-22457
- https://issues.redhat.com/browse/JBEAP-23344
- https://issues.redhat.com/browse/JBEAP-23444
- https://issues.redhat.com/browse/JBEAP-23492
- https://issues.redhat.com/browse/JBEAP-23526
- https://issues.redhat.com/browse/JBEAP-23528
- https://issues.redhat.com/browse/JBEAP-23546
- https://issues.redhat.com/browse/JBEAP-23550
- https://issues.redhat.com/browse/JBEAP-23551
- https://issues.redhat.com/browse/JBEAP-23554
- https://issues.redhat.com/browse/JBEAP-23556
- https://issues.redhat.com/browse/JBEAP-23557
- https://issues.redhat.com/browse/JBEAP-23559
- https://issues.redhat.com/browse/JBEAP-23561
- https://issues.redhat.com/browse/JBEAP-23566
- https://issues.redhat.com/browse/JBEAP-23571
- https://issues.redhat.com/browse/JBEAP-23626
- https://issues.redhat.com/browse/JBEAP-23659
- https://issues.redhat.com/browse/JBEAP-23671
- https://issues.redhat.com/browse/JBEAP-23686
- https://issues.redhat.com/browse/JBEAP-23726
- https://issues.redhat.com/browse/JBEAP-23728
- https://issues.redhat.com/browse/JBEAP-23806
- https://issues.redhat.com/browse/JBEAP-23807
- https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_5894.json
- https://access.redhat.com/security/cve/CVE-2021-44906
- https://www.cve.org/CVERecord?id=CVE-2021-44906
- https://nvd.nist.gov/vuln/detail/CVE-2021-44906
- https://github.com/advisories/GHSA-xvch-5gv4-984h
- https://access.redhat.com/security/cve/CVE-2022-24823
- https://www.cve.org/CVERecord?id=CVE-2022-24823
- https://nvd.nist.gov/vuln/detail/CVE-2022-24823
- https://access.redhat.com/security/cve/CVE-2022-25647
- https://www.cve.org/CVERecord?id=CVE-2022-25647
- https://nvd.nist.gov/vuln/detail/CVE-2022-25647