RHSA-2024:0711
Vulnerability Summary
Timeline
Description
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.15 Security update
CVSS Metrics
- v3.1•MEDIUM•Score: 6.5CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Systems
- redhat•eap7-eclipse-jgit
< 0:5.13.2-1.SP1_redhat_00001.1.el8eap
- redhat•eap7-glassfish-jsf
< 0:2.3.14-7.SP08_redhat_00001.1.el8eap
- redhat•eap7-hibernate
< 0:5.3.33-2.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-core
< 0:5.3.33-2.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-entitymanager
< 0:5.3.33-2.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-envers
< 0:5.3.33-2.Final_redhat_00001.1.el8eap
- redhat•eap7-hibernate-java8
< 0:5.3.33-2.Final_redhat_00001.1.el8eap
- redhat•eap7-insights-java-client
< 0:1.1.1-1.redhat_00001.1.el8eap
- redhat•eap7-ironjacamar
< 0:1.5.16-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-common-api
< 0:1.5.16-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-common-impl
< 0:1.5.16-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-common-spi
< 0:1.5.16-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-core-api
< 0:1.5.16-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-core-impl
< 0:1.5.16-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-deployers-common
< 0:1.5.16-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-jdbc
< 0:1.5.16-1.Final_redhat_00001.1.el8eap
- redhat•eap7-ironjacamar-validator
< 0:1.5.16-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jboss-cert-helper
< 0:1.1.1-1.redhat_00001.1.el8eap
- redhat•eap7-jboss-msc
< 0:1.4.13-1.Final_redhat_00001.1.el8eap
- redhat•eap7-jboss-server-migration
< 0:1.10.0-34.Final_redhat_00033.1.el8eap
- redhat•eap7-jboss-server-migration-cli
< 0:1.10.0-34.Final_redhat_00033.1.el8eap
- redhat•eap7-jboss-server-migration-core
< 0:1.10.0-34.Final_redhat_00033.1.el8eap
- redhat•eap7-jbossws-spi
< 0:3.4.0-4.Final_redhat_00002.1.el8eap
- redhat•eap7-log4j2-jboss-logmanager
< 0:1.1.2-1.Final_redhat_00002.1.el8eap
- redhat•eap7-protostream
< 0:4.3.6-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-atom-provider
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-cdi
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-client
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-crypto
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-jackson-provider
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-jackson2-provider
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-jaxb-provider
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-jaxrs
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-jettison-provider
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-jose-jwt
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-jsapi
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-json-binding-provider
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-json-p-provider
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-multipart-provider
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-rxjava2
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-spring
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-validator-provider-11
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-resteasy-yaml-provider
< 0:3.15.9-1.Final_redhat_00001.1.el8eap
- redhat•eap7-wildfly
< 0:7.4.15-2.GA_redhat_00002.1.el8eap
- redhat•eap7-wildfly-elytron
< 0:1.15.21-1.Final_redhat_00001.1.el8eap
- redhat•eap7-wildfly-elytron-tool
< 0:1.15.21-1.Final_redhat_00001.1.el8eap
- redhat•eap7-wildfly-java-jdk11
< 0:7.4.15-2.GA_redhat_00002.1.el8eap
- redhat•eap7-wildfly-java-jdk17
< 0:7.4.15-2.GA_redhat_00002.1.el8eap
- redhat•eap7-wildfly-java-jdk8
< 0:7.4.15-2.GA_redhat_00002.1.el8eap
Showing first 50 affected entries in server-rendered view.
References (30)
- https://access.redhat.com/errata/RHSA-2024:0711
- https://access.redhat.com/security/updates/classification/#moderate
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/
- https://bugzilla.redhat.com/show_bug.cgi?id=2238614
- https://bugzilla.redhat.com/show_bug.cgi?id=2246070
- https://issues.redhat.com/browse/JBEAP-25375
- https://issues.redhat.com/browse/JBEAP-25616
- https://issues.redhat.com/browse/JBEAP-25785
- https://issues.redhat.com/browse/JBEAP-25944
- https://issues.redhat.com/browse/JBEAP-26013
- https://issues.redhat.com/browse/JBEAP-26021
- https://issues.redhat.com/browse/JBEAP-26025
- https://issues.redhat.com/browse/JBEAP-26049
- https://issues.redhat.com/browse/JBEAP-26051
- https://issues.redhat.com/browse/JBEAP-26101
- https://issues.redhat.com/browse/JBEAP-26115
- https://issues.redhat.com/browse/JBEAP-26159
- https://issues.redhat.com/browse/JBEAP-26164
- https://issues.redhat.com/browse/JBEAP-26169
- https://issues.redhat.com/browse/JBEAP-26266
- https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0711.json
- https://access.redhat.com/security/cve/CVE-2023-4759
- https://www.cve.org/CVERecord?id=CVE-2023-4759
- https://nvd.nist.gov/vuln/detail/CVE-2023-4759
- https://access.redhat.com/security/cve/CVE-2023-44483
- https://www.cve.org/CVERecord?id=CVE-2023-44483
- https://nvd.nist.gov/vuln/detail/CVE-2023-44483
- http://www.openwall.com/lists/oss-security/2023/10/20/5
- https://lists.apache.org/thread/vmqbp9mfxtrf0kmbnnmbn3h9j6dr9q55