Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-3736
Vulnerability from cvelistv5
Published
2017-11-02 17:00
Modified
2024-09-16 20:12
Severity ?
EPSS score ?
Summary
There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| OpenSSL Software Foundation | OpenSSL |
Version: 1.1.0 - 1.1.0f Version: 1.0.2 - 1.0.2l |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T14:39:39.687Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20171107-0002/"
},
{
"name": "RHSA-2018:2185",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/openssl/openssl/commit/4443cf7aa0099e5ce615c18cee249fff77fb0871"
},
{
"name": "RHSA-2018:2186",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"name": "RHSA-2018:2713",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
},
{
"name": "DSA-4018",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2017/dsa-4018"
},
{
"name": "GLSA-201712-03",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201712-03"
},
{
"name": "RHSA-2018:0998",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
},
{
"name": "RHSA-2018:2575",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.tenable.com/security/tns-2017-15"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html"
},
{
"name": "101666",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/101666"
},
{
"name": "RHSA-2018:2568",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.openssl.org/news/secadv/20171102.txt"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
},
{
"name": "DSA-4017",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2017/dsa-4017"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.tenable.com/security/tns-2017-14"
},
{
"name": "FreeBSD-SA-17:11",
"tags": [
"vendor-advisory",
"x_refsource_FREEBSD",
"x_transferred"
],
"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-17:11.openssl.asc"
},
{
"name": "1039727",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1039727"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbst03881en_us"
},
{
"name": "RHSA-2018:2187",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20180117-0002/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "OpenSSL",
"vendor": "OpenSSL Software Foundation",
"versions": [
{
"status": "affected",
"version": "1.1.0 - 1.1.0f"
},
{
"status": "affected",
"version": "1.0.2 - 1.0.2l"
}
]
}
],
"datePublic": "2017-11-02T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "carry-propagating bug",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-07-23T22:31:33",
"orgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
"shortName": "openssl"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20171107-0002/"
},
{
"name": "RHSA-2018:2185",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/openssl/openssl/commit/4443cf7aa0099e5ce615c18cee249fff77fb0871"
},
{
"name": "RHSA-2018:2186",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"name": "RHSA-2018:2713",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
},
{
"name": "DSA-4018",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2017/dsa-4018"
},
{
"name": "GLSA-201712-03",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201712-03"
},
{
"name": "RHSA-2018:0998",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
},
{
"name": "RHSA-2018:2575",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.tenable.com/security/tns-2017-15"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html"
},
{
"name": "101666",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/101666"
},
{
"name": "RHSA-2018:2568",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.openssl.org/news/secadv/20171102.txt"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
},
{
"name": "DSA-4017",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2017/dsa-4017"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.tenable.com/security/tns-2017-14"
},
{
"name": "FreeBSD-SA-17:11",
"tags": [
"vendor-advisory",
"x_refsource_FREEBSD"
],
"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-17:11.openssl.asc"
},
{
"name": "1039727",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1039727"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbst03881en_us"
},
{
"name": "RHSA-2018:2187",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20180117-0002/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "openssl-security@openssl.org",
"DATE_PUBLIC": "2017-11-02T00:00:00",
"ID": "CVE-2017-3736",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "OpenSSL",
"version": {
"version_data": [
{
"version_value": "1.1.0 - 1.1.0f"
},
{
"version_value": "1.0.2 - 1.0.2l"
}
]
}
}
]
},
"vendor_name": "OpenSSL Software Foundation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "carry-propagating bug"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://security.netapp.com/advisory/ntap-20171107-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20171107-0002/"
},
{
"name": "RHSA-2018:2185",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
},
{
"name": "https://github.com/openssl/openssl/commit/4443cf7aa0099e5ce615c18cee249fff77fb0871",
"refsource": "MISC",
"url": "https://github.com/openssl/openssl/commit/4443cf7aa0099e5ce615c18cee249fff77fb0871"
},
{
"name": "RHSA-2018:2186",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html"
},
{
"name": "RHSA-2018:2713",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
},
{
"name": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html",
"refsource": "CONFIRM",
"url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
},
{
"name": "DSA-4018",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-4018"
},
{
"name": "GLSA-201712-03",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201712-03"
},
{
"name": "RHSA-2018:0998",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
},
{
"name": "RHSA-2018:2575",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
},
{
"name": "https://www.tenable.com/security/tns-2017-15",
"refsource": "CONFIRM",
"url": "https://www.tenable.com/security/tns-2017-15"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html"
},
{
"name": "101666",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101666"
},
{
"name": "RHSA-2018:2568",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
},
{
"name": "https://www.openssl.org/news/secadv/20171102.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
},
{
"name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
},
{
"name": "DSA-4017",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-4017"
},
{
"name": "https://www.tenable.com/security/tns-2017-14",
"refsource": "CONFIRM",
"url": "https://www.tenable.com/security/tns-2017-14"
},
{
"name": "FreeBSD-SA-17:11",
"refsource": "FREEBSD",
"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-17:11.openssl.asc"
},
{
"name": "1039727",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039727"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbst03881en_us",
"refsource": "CONFIRM",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbst03881en_us"
},
{
"name": "RHSA-2018:2187",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
},
{
"name": "https://security.netapp.com/advisory/ntap-20180117-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20180117-0002/"
},
{
"name": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html",
"refsource": "MISC",
"url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"
},
{
"name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"refsource": "MISC",
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
"assignerShortName": "openssl",
"cveId": "CVE-2017-3736",
"datePublished": "2017-11-02T17:00:00Z",
"dateReserved": "2016-12-16T00:00:00",
"dateUpdated": "2024-09-16T20:12:39.274Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-3736\",\"sourceIdentifier\":\"openssl-security@openssl.org\",\"published\":\"2017-11-02T17:29:00.243\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.\"},{\"lang\":\"es\",\"value\":\"Existe un error de propagaci\u00f3n de d\u00edgito (carry propagation) en el procedimiento de elevaci\u00f3n al cuadrado de x86_64 Montgomery en OpenSSL en versiones anteriores a la 1.0.2m y 1.1.0 anteriores a la 1.1.0g. Ning\u00fan algoritmo EC se ha visto afectado. El an\u00e1lisis sugiere que los ataques contra RSA y DSA como resultado de este defecto ser\u00edan muy dif\u00edciles de realizar y no se ve probable. Los ataques contra DH se consideran simplemente factibles (aunque muy dif\u00edciles) porque la mayor\u00eda del trabajo necesario para deducir la informaci\u00f3n sobre una clave privada se puede realizar offline. La cantidad de recursos necesarios para este ataque ser\u00eda muy elevada y lo m\u00e1s probable es que solo sea accesible para un n\u00famero limitado de atacantes. Un atacante necesitar\u00eda acceso online a un sistema sin parchear que utilice la clave privada objetivo en una situaci\u00f3n con par\u00e1metros DH persistentes y una clave privada que se comparte entre m\u00faltiples clientes. Esto solo afecta a los procesadores que son compatibles con las extensiones BMI1, BMI2 y ADX como Intel Broadwell (5\u00aa generaci\u00f3n) y posteriores o AMD Ryzen.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:P/I:N/A:N\",\"baseScore\":4.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-200\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.0.2\",\"versionEndExcluding\":\"1.0.2m\",\"matchCriteriaId\":\"C1069D78-287A-4623-9721-FD9E26135354\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.1.0\",\"versionEndExcluding\":\"1.1.0g\",\"matchCriteriaId\":\"28E0F2BE-8EDA-4C09-B251-C35352A621D0\"}]}]}],\"references\":[{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/101666\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1039727\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0998\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2185\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2186\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2187\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2568\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2575\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2713\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/openssl/openssl/commit/4443cf7aa0099e5ce615c18cee249fff77fb0871\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.FreeBSD.org/advisories/FreeBSD-SA-17:11.openssl.asc\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201712-03\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20171107-0002/\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20180117-0002/\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbst03881en_us\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-4017\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-4018\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://www.openssl.org/news/secadv/20171102.txt\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://www.tenable.com/security/tns-2017-14\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2017-15\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/101666\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1039727\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0998\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2185\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2186\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2187\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2568\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2575\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:2713\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/openssl/openssl/commit/4443cf7aa0099e5ce615c18cee249fff77fb0871\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.FreeBSD.org/advisories/FreeBSD-SA-17:11.openssl.asc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201712-03\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20171107-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20180117-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbst03881en_us\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-4017\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-4018\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://www.openssl.org/news/secadv/20171102.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.tenable.com/security/tns-2017-14\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2017-15\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
ncsc-2024-0239
Vulnerability from csaf_ncscnl
Published
2024-06-07 06:26
Modified
2024-06-07 06:26
Summary
Kwetsbaarheden verholpen in Solarwinds Platform
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Solarwinds heeft kwetsbaarheden verholpen in Solarwinds Platform.
Interpretaties
Een kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service te veroorzaken, een command-injection uit te voeren, of om een Cross-Site-Scripting-aanval uit te voeren. Een dergelijke aanval kan leiden tot uitvoer van willekeurige code in de browser van het slachtoffer.
Voor succesvol misbruik moet de kwaadwillende voorafgaande authenticatie hebben.
Oplossingen
Solarwinds heeft updates uitgebracht om de kwetsbaarheden te verhelpen in Solarwinds Platform 2024.2
In deze updates zijn tevens kwetsbaarheden verholpen in onderliggende third-party software waar het platform gebruik van maakt. Voor deze kwetsbaarheden zijn eerdere beveiligingsadviezen gepubliceerd.
Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-125
Out-of-bounds Read
CWE-190
Integer Overflow or Wraparound
CWE-20
Improper Input Validation
CWE-325
Missing Cryptographic Step
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-385
Covert Timing Channel
CWE-416
Use After Free
CWE-476
NULL Pointer Dereference
CWE-682
Incorrect Calculation
CWE-704
Incorrect Type Conversion or Cast
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CWE-942
Permissive Cross-domain Policy with Untrusted Domains
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Solarwinds heeft kwetsbaarheden verholpen in Solarwinds Platform.",
"title": "Feiten"
},
{
"category": "description",
"text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service te veroorzaken, een command-injection uit te voeren, of om een Cross-Site-Scripting-aanval uit te voeren. Een dergelijke aanval kan leiden tot uitvoer van willekeurige code in de browser van het slachtoffer.\n\nVoor succesvol misbruik moet de kwaadwillende voorafgaande authenticatie hebben.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Solarwinds heeft updates uitgebracht om de kwetsbaarheden te verhelpen in Solarwinds Platform 2024.2\n\nIn deze updates zijn tevens kwetsbaarheden verholpen in onderliggende third-party software waar het platform gebruik van maakt. Voor deze kwetsbaarheden zijn eerdere beveiligingsadviezen gepubliceerd.\n\nZie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
},
{
"category": "general",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
},
{
"category": "general",
"text": "Covert Timing Channel",
"title": "CWE-385"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "general",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "general",
"text": "Incorrect Calculation",
"title": "CWE-682"
},
{
"category": "general",
"text": "Incorrect Type Conversion or Cast",
"title": "CWE-704"
},
{
"category": "general",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "general",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "general",
"text": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
"title": "CWE-89"
},
{
"category": "general",
"text": "Permissive Cross-domain Policy with Untrusted Domains",
"title": "CWE-942"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2024-2_release_notes.htm"
},
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-28996"
},
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-28999"
},
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-29004"
}
],
"title": "Kwetsbaarheden verholpen in Solarwinds Platform",
"tracking": {
"current_release_date": "2024-06-07T06:26:01.172456Z",
"id": "NCSC-2024-0239",
"initial_release_date": "2024-06-07T06:26:01.172456Z",
"revision_history": [
{
"date": "2024-06-07T06:26:01.172456Z",
"number": "0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "solarwinds_platform_",
"product": {
"name": "solarwinds_platform_",
"product_id": "CSAFPID-1463738",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds_:solarwinds_platform_:2024.1.1_and_previous_versions:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "solarwinds_platform",
"product": {
"name": "solarwinds_platform",
"product_id": "CSAFPID-1463740",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds_:solarwinds_platform:2024.1.1_and_previous_versions_:*:*:*:*:*:*:*"
}
}
}
],
"category": "vendor",
"name": "solarwinds_"
},
{
"branches": [
{
"category": "product_name",
"name": "orion_platform",
"product": {
"name": "orion_platform",
"product_id": "CSAFPID-1463455",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds:orion_platform:2024.1.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "orion_platform",
"product": {
"name": "orion_platform",
"product_id": "CSAFPID-1463456",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds:orion_platform:2024.1.1:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "solarwinds_platform_",
"product": {
"name": "solarwinds_platform_",
"product_id": "CSAFPID-1463739",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds:solarwinds_platform_:2024.1.1_and_previous_versions_:*:*:*:*:*:*:*"
}
}
}
],
"category": "vendor",
"name": "solarwinds"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"notes": [
{
"category": "other",
"text": "Incorrect Calculation",
"title": "CWE-682"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2017-3736",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2017/CVE-2017-3736.json"
}
],
"title": "CVE-2017-3736"
},
{
"cve": "CVE-2018-0732",
"cwe": {
"id": "CWE-325",
"name": "Missing Cryptographic Step"
},
"notes": [
{
"category": "other",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2018-0732",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2018/CVE-2018-0732.json"
}
],
"title": "CVE-2018-0732"
},
{
"cve": "CVE-2018-0737",
"cwe": {
"id": "CWE-385",
"name": "Covert Timing Channel"
},
"notes": [
{
"category": "other",
"text": "Covert Timing Channel",
"title": "CWE-385"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2018-0737",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2018/CVE-2018-0737.json"
}
],
"title": "CVE-2018-0737"
},
{
"cve": "CVE-2019-1559",
"cwe": {
"id": "CWE-325",
"name": "Missing Cryptographic Step"
},
"notes": [
{
"category": "other",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2019-1559",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2019/CVE-2019-1559.json"
}
],
"title": "CVE-2019-1559"
},
{
"cve": "CVE-2020-1971",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2020-1971",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-1971.json"
}
],
"title": "CVE-2020-1971"
},
{
"cve": "CVE-2021-3712",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2021-3712",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-3712.json"
}
],
"title": "CVE-2021-3712"
},
{
"cve": "CVE-2021-4321",
"cwe": {
"id": "CWE-942",
"name": "Permissive Cross-domain Policy with Untrusted Domains"
},
"notes": [
{
"category": "other",
"text": "Permissive Cross-domain Policy with Untrusted Domains",
"title": "CWE-942"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2021-4321",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-4321.json"
}
],
"title": "CVE-2021-4321"
},
{
"cve": "CVE-2021-23840",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2021-23840",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-23840.json"
}
],
"title": "CVE-2021-23840"
},
{
"cve": "CVE-2022-0778",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2022-0778",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-0778.json"
}
],
"title": "CVE-2022-0778"
},
{
"cve": "CVE-2023-0215",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2023-0215",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0215.json"
}
],
"title": "CVE-2023-0215"
},
{
"cve": "CVE-2023-0286",
"cwe": {
"id": "CWE-704",
"name": "Incorrect Type Conversion or Cast"
},
"notes": [
{
"category": "other",
"text": "Incorrect Type Conversion or Cast",
"title": "CWE-704"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2023-0286",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0286.json"
}
],
"title": "CVE-2023-0286"
},
{
"cve": "CVE-2024-28996",
"cwe": {
"id": "CWE-89",
"name": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
"title": "CWE-89"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1463739"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28996",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28996.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1463739"
]
}
],
"title": "CVE-2024-28996"
},
{
"cve": "CVE-2024-28999",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1463740"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28999",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28999.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1463740"
]
}
],
"title": "CVE-2024-28999"
},
{
"cve": "CVE-2024-29004",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1463738"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-29004",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29004.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1463738"
]
}
],
"title": "CVE-2024-29004"
}
]
}
NCSC-2024-0239
Vulnerability from csaf_ncscnl
Published
2024-06-07 06:26
Modified
2024-06-07 06:26
Summary
Kwetsbaarheden verholpen in Solarwinds Platform
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Solarwinds heeft kwetsbaarheden verholpen in Solarwinds Platform.
Interpretaties
Een kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service te veroorzaken, een command-injection uit te voeren, of om een Cross-Site-Scripting-aanval uit te voeren. Een dergelijke aanval kan leiden tot uitvoer van willekeurige code in de browser van het slachtoffer.
Voor succesvol misbruik moet de kwaadwillende voorafgaande authenticatie hebben.
Oplossingen
Solarwinds heeft updates uitgebracht om de kwetsbaarheden te verhelpen in Solarwinds Platform 2024.2
In deze updates zijn tevens kwetsbaarheden verholpen in onderliggende third-party software waar het platform gebruik van maakt. Voor deze kwetsbaarheden zijn eerdere beveiligingsadviezen gepubliceerd.
Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-125
Out-of-bounds Read
CWE-190
Integer Overflow or Wraparound
CWE-20
Improper Input Validation
CWE-325
Missing Cryptographic Step
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-385
Covert Timing Channel
CWE-416
Use After Free
CWE-476
NULL Pointer Dereference
CWE-682
Incorrect Calculation
CWE-704
Incorrect Type Conversion or Cast
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CWE-942
Permissive Cross-domain Policy with Untrusted Domains
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Solarwinds heeft kwetsbaarheden verholpen in Solarwinds Platform.",
"title": "Feiten"
},
{
"category": "description",
"text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service te veroorzaken, een command-injection uit te voeren, of om een Cross-Site-Scripting-aanval uit te voeren. Een dergelijke aanval kan leiden tot uitvoer van willekeurige code in de browser van het slachtoffer.\n\nVoor succesvol misbruik moet de kwaadwillende voorafgaande authenticatie hebben.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Solarwinds heeft updates uitgebracht om de kwetsbaarheden te verhelpen in Solarwinds Platform 2024.2\n\nIn deze updates zijn tevens kwetsbaarheden verholpen in onderliggende third-party software waar het platform gebruik van maakt. Voor deze kwetsbaarheden zijn eerdere beveiligingsadviezen gepubliceerd.\n\nZie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
},
{
"category": "general",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
},
{
"category": "general",
"text": "Covert Timing Channel",
"title": "CWE-385"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "general",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "general",
"text": "Incorrect Calculation",
"title": "CWE-682"
},
{
"category": "general",
"text": "Incorrect Type Conversion or Cast",
"title": "CWE-704"
},
{
"category": "general",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "general",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "general",
"text": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
"title": "CWE-89"
},
{
"category": "general",
"text": "Permissive Cross-domain Policy with Untrusted Domains",
"title": "CWE-942"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2024-2_release_notes.htm"
},
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-28996"
},
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-28999"
},
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-29004"
}
],
"title": "Kwetsbaarheden verholpen in Solarwinds Platform",
"tracking": {
"current_release_date": "2024-06-07T06:26:01.172456Z",
"id": "NCSC-2024-0239",
"initial_release_date": "2024-06-07T06:26:01.172456Z",
"revision_history": [
{
"date": "2024-06-07T06:26:01.172456Z",
"number": "0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "solarwinds_platform_",
"product": {
"name": "solarwinds_platform_",
"product_id": "CSAFPID-1463738",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds_:solarwinds_platform_:2024.1.1_and_previous_versions:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "solarwinds_platform",
"product": {
"name": "solarwinds_platform",
"product_id": "CSAFPID-1463740",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds_:solarwinds_platform:2024.1.1_and_previous_versions_:*:*:*:*:*:*:*"
}
}
}
],
"category": "vendor",
"name": "solarwinds_"
},
{
"branches": [
{
"category": "product_name",
"name": "orion_platform",
"product": {
"name": "orion_platform",
"product_id": "CSAFPID-1463455",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds:orion_platform:2024.1.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "orion_platform",
"product": {
"name": "orion_platform",
"product_id": "CSAFPID-1463456",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds:orion_platform:2024.1.1:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "solarwinds_platform_",
"product": {
"name": "solarwinds_platform_",
"product_id": "CSAFPID-1463739",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds:solarwinds_platform_:2024.1.1_and_previous_versions_:*:*:*:*:*:*:*"
}
}
}
],
"category": "vendor",
"name": "solarwinds"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"notes": [
{
"category": "other",
"text": "Incorrect Calculation",
"title": "CWE-682"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2017-3736",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2017/CVE-2017-3736.json"
}
],
"title": "CVE-2017-3736"
},
{
"cve": "CVE-2018-0732",
"cwe": {
"id": "CWE-325",
"name": "Missing Cryptographic Step"
},
"notes": [
{
"category": "other",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2018-0732",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2018/CVE-2018-0732.json"
}
],
"title": "CVE-2018-0732"
},
{
"cve": "CVE-2018-0737",
"cwe": {
"id": "CWE-385",
"name": "Covert Timing Channel"
},
"notes": [
{
"category": "other",
"text": "Covert Timing Channel",
"title": "CWE-385"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2018-0737",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2018/CVE-2018-0737.json"
}
],
"title": "CVE-2018-0737"
},
{
"cve": "CVE-2019-1559",
"cwe": {
"id": "CWE-325",
"name": "Missing Cryptographic Step"
},
"notes": [
{
"category": "other",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2019-1559",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2019/CVE-2019-1559.json"
}
],
"title": "CVE-2019-1559"
},
{
"cve": "CVE-2020-1971",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2020-1971",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-1971.json"
}
],
"title": "CVE-2020-1971"
},
{
"cve": "CVE-2021-3712",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2021-3712",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-3712.json"
}
],
"title": "CVE-2021-3712"
},
{
"cve": "CVE-2021-4321",
"cwe": {
"id": "CWE-942",
"name": "Permissive Cross-domain Policy with Untrusted Domains"
},
"notes": [
{
"category": "other",
"text": "Permissive Cross-domain Policy with Untrusted Domains",
"title": "CWE-942"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2021-4321",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-4321.json"
}
],
"title": "CVE-2021-4321"
},
{
"cve": "CVE-2021-23840",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2021-23840",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-23840.json"
}
],
"title": "CVE-2021-23840"
},
{
"cve": "CVE-2022-0778",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2022-0778",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-0778.json"
}
],
"title": "CVE-2022-0778"
},
{
"cve": "CVE-2023-0215",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2023-0215",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0215.json"
}
],
"title": "CVE-2023-0215"
},
{
"cve": "CVE-2023-0286",
"cwe": {
"id": "CWE-704",
"name": "Incorrect Type Conversion or Cast"
},
"notes": [
{
"category": "other",
"text": "Incorrect Type Conversion or Cast",
"title": "CWE-704"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2023-0286",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0286.json"
}
],
"title": "CVE-2023-0286"
},
{
"cve": "CVE-2024-28996",
"cwe": {
"id": "CWE-89",
"name": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
"title": "CWE-89"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1463739"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28996",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28996.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1463739"
]
}
],
"title": "CVE-2024-28996"
},
{
"cve": "CVE-2024-28999",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1463740"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28999",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28999.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1463740"
]
}
],
"title": "CVE-2024-28999"
},
{
"cve": "CVE-2024-29004",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1463738"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-29004",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29004.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1463738"
]
}
],
"title": "CVE-2024-29004"
}
]
}
rhsa-2018:2575
Vulnerability from csaf_redhat
Published
2018-08-28 19:19
Modified
2025-01-09 05:43
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP20.
Security Fix(es):
* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* IBM JDK: DoS in the java.math component (CVE-2018-1517)
* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)
* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)
* OpenSSL: Double-free in DSA code (CVE-2016-0705)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP20.\n\nSecurity Fix(es):\n\n* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* IBM JDK: DoS in the java.math component (CVE-2018-1517)\n\n* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)\n\n* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)\n\n* OpenSSL: Double-free in DSA code (CVE-2016-0705)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2575",
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2575.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-01-09T05:43:02+00:00",
"generator": {
"date": "2025-01-09T05:43:02+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2575",
"initial_release_date": "2018-08-28T19:19:26+00:00",
"revision_history": [
{
"date": "2018-08-28T19:19:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-28T19:19:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:43:02+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Adam Langley"
],
"organization": "Google/BoringSSL",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-0705",
"discovery_date": "2016-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1310596"
}
],
"notes": [
{
"category": "description",
"text": "A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially crafted DSA private keys that, when processed by an application compiled against OpenSSL, could cause the application to crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenSSL: Double-free in DSA code",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "RHBZ#1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-0705",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705"
}
],
"release_date": "2016-02-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenSSL: Double-free in DSA code"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2018-1517",
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618871"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: DoS in the java.math component",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1517"
},
{
"category": "external",
"summary": "RHBZ#1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1517",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1517"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: DoS in the java.math component"
},
{
"cve": "CVE-2018-1656",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618869"
}
],
"notes": [
{
"category": "description",
"text": "The IBM Java Runtime Environment\u0027s Diagnostic Tooling Framework for Java (DTFJ) (IBM SDK, Java Technology Edition 6.0 , 7.0, and 8.0) does not protect against path traversal attacks when extracting compressed dump files. IBM X-Force ID: 144882.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: path traversal flaw in the Diagnostic Tooling Framework",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1656"
},
{
"category": "external",
"summary": "RHBZ#1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1656",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: path traversal flaw in the Diagnostic Tooling Framework"
},
{
"cve": "CVE-2018-2940",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602146"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2940"
},
{
"category": "external",
"summary": "RHBZ#1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2940",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)"
},
{
"cve": "CVE-2018-2952",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2018-07-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1600925"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2952"
},
{
"category": "external",
"summary": "RHBZ#1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2952",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2952"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)"
},
{
"cve": "CVE-2018-2973",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602145"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSL/TLS to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2973"
},
{
"category": "external",
"summary": "RHBZ#1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2973",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2973"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)"
},
{
"cve": "CVE-2018-12539",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618767"
}
],
"notes": [
{
"category": "description",
"text": "In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on Windows, Linux and AIX JVMs and can be disabled using the command line option -Dcom.ibm.tools.attach.enable=no.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: privilege escalation via insufficiently restricted access to Attach API",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-12539"
},
{
"category": "external",
"summary": "RHBZ#1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-12539",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539"
}
],
"release_date": "2018-05-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: privilege escalation via insufficiently restricted access to Attach API"
}
]
}
rhsa-2018:2713
Vulnerability from csaf_redhat
Published
2018-09-17 14:54
Modified
2025-01-09 05:43
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP20.
Security Fix(es):
* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* IBM JDK: DoS in the java.math component (CVE-2018-1517)
* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)
* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)
* OpenSSL: Double-free in DSA code (CVE-2016-0705)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP20.\n\nSecurity Fix(es):\n\n* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* IBM JDK: DoS in the java.math component (CVE-2018-1517)\n\n* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)\n\n* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)\n\n* OpenSSL: Double-free in DSA code (CVE-2016-0705)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2713",
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2713.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-01-09T05:43:09+00:00",
"generator": {
"date": "2025-01-09T05:43:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2713",
"initial_release_date": "2018-09-17T14:54:13+00:00",
"revision_history": [
{
"date": "2018-09-17T14:54:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-09-17T14:54:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:43:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Adam Langley"
],
"organization": "Google/BoringSSL",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-0705",
"discovery_date": "2016-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1310596"
}
],
"notes": [
{
"category": "description",
"text": "A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially crafted DSA private keys that, when processed by an application compiled against OpenSSL, could cause the application to crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenSSL: Double-free in DSA code",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "RHBZ#1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-0705",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705"
}
],
"release_date": "2016-02-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenSSL: Double-free in DSA code"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2018-1517",
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618871"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: DoS in the java.math component",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1517"
},
{
"category": "external",
"summary": "RHBZ#1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1517",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1517"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: DoS in the java.math component"
},
{
"cve": "CVE-2018-1656",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618869"
}
],
"notes": [
{
"category": "description",
"text": "The IBM Java Runtime Environment\u0027s Diagnostic Tooling Framework for Java (DTFJ) (IBM SDK, Java Technology Edition 6.0 , 7.0, and 8.0) does not protect against path traversal attacks when extracting compressed dump files. IBM X-Force ID: 144882.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: path traversal flaw in the Diagnostic Tooling Framework",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1656"
},
{
"category": "external",
"summary": "RHBZ#1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1656",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: path traversal flaw in the Diagnostic Tooling Framework"
},
{
"cve": "CVE-2018-2940",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602146"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2940"
},
{
"category": "external",
"summary": "RHBZ#1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2940",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)"
},
{
"cve": "CVE-2018-2952",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2018-07-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1600925"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2952"
},
{
"category": "external",
"summary": "RHBZ#1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2952",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2952"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)"
},
{
"cve": "CVE-2018-2973",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602145"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSL/TLS to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2973"
},
{
"category": "external",
"summary": "RHBZ#1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2973",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2973"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)"
},
{
"cve": "CVE-2018-12539",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618767"
}
],
"notes": [
{
"category": "description",
"text": "In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on Windows, Linux and AIX JVMs and can be disabled using the command line option -Dcom.ibm.tools.attach.enable=no.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: privilege escalation via insufficiently restricted access to Attach API",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-12539"
},
{
"category": "external",
"summary": "RHBZ#1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-12539",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539"
}
],
"release_date": "2018-05-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: privilege escalation via insufficiently restricted access to Attach API"
}
]
}
rhsa-2018_2185
Vulnerability from csaf_redhat
Published
2018-07-12 16:14
Modified
2024-11-22 11:16
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 7 security update
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this release as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.29 packages that are part
of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services
Apache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,
enhancements and component upgrades included in this release.
This release upgrades OpenSSL to version 1.0.2.n
Security Fix(es):
* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)
* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)
* openssl: certificate message OOB reads (CVE-2016-6306)
* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)
* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-6306
and CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this release as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release adds the new Apache HTTP Server 2.4.29 packages that are part\nof the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services\nApache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,\nenhancements and component upgrades included in this release.\n\nThis release upgrades OpenSSL to version 1.0.2.n\n\nSecurity Fix(es):\n\n* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)\n\n* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)\n\n* openssl: certificate message OOB reads (CVE-2016-6306)\n\n* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)\n\n* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* openssl: Read/write after SSL object in error state (CVE-2017-3737)\n\n* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-6306 \nand CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2185",
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/"
},
{
"category": "external",
"summary": "1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "JBCS-373",
"url": "https://issues.redhat.com/browse/JBCS-373"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2185.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 7 security update",
"tracking": {
"current_release_date": "2024-11-22T11:16:03+00:00",
"generator": {
"date": "2024-11-22T11:16:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2185",
"initial_release_date": "2018-07-12T16:14:46+00:00",
"revision_history": [
{
"date": "2018-07-12T16:14:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-07-12T16:14:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:16:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Core Services on RHEL 7 Server",
"product": {
"name": "Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Core Services"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt-debuginfo@2.4.1-19.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx-debuginfo@0.9.6-17.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb-debuginfo@5.4-36.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.8-1.Final_redhat_2.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.43-1.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.43-1.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.43-1.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.29.0-8.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.29.0-8.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.1-23.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.29-17.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.29-17.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo@1.1.0-1.redhat_2.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.43-1.redhat_1.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"product": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"product_id": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.29-17.jbcs.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch"
},
"product_reference": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-2182",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2016-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1367340"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds write flaw was discovered in the OpenSSL BN_bn2dec() function. An attacker able to make an application using OpenSSL to process a large BIGNUM could cause the application to crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-2182"
},
{
"category": "external",
"summary": "RHBZ#1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-2182",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2182"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()"
},
{
"cve": "CVE-2016-4975",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2016-09-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1375968"
}
],
"notes": [
{
"category": "description",
"text": "It was found that Apache was vulnerable to a HTTP response splitting attack for sites which use mod_userdir. An attacker could use this flaw to inject CRLF characters into the HTTP header and could possibly gain access to secure data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-4975"
},
{
"category": "external",
"summary": "RHBZ#1375968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1375968"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-4975",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975"
}
],
"release_date": "2018-08-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir"
},
{
"cve": "CVE-2016-6302",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-08-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369855"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow flaw leading to a buffer over-read was found in the way OpenSSL parsed TLS session tickets. A remote attacker could use this flaw to crash a TLS server using OpenSSL if it used SHA-512 as HMAC for session tickets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Insufficient TLS session ticket HMAC length checks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6302"
},
{
"category": "external",
"summary": "RHBZ#1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6302",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6302"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Insufficient TLS session ticket HMAC length checks"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Shi Lei"
],
"organization": "Gear Team of Qihoo 360 Inc.",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-6306",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1377594"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read flaws were found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use these flaws to crash a TLS/SSL server or client using OpenSSL.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: certificate message OOB reads",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6306"
},
{
"category": "external",
"summary": "RHBZ#1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6306",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 1.2,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: certificate message OOB reads"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
}
],
"cve": "CVE-2016-7055",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2016-10-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1393929"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker\u0027s direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Carry propagating bug in Montgomery multiplication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7055"
},
{
"category": "external",
"summary": "RHBZ#1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7055",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20161110.txt",
"url": "https://www.openssl.org/news/secadv/20161110.txt"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2016-10-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: Carry propagating bug in Montgomery multiplication"
},
{
"cve": "CVE-2017-3731",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416852"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow leading to an out of bounds read flaw was found in OpenSSL. A remote attacker could possibly use this flaw to crash a 32-bit TLS/SSL server or client using OpenSSL if it used the RC4-MD5 cipher suite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Truncated packet could crash via OOB read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3731"
},
{
"category": "external",
"summary": "RHBZ#1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Truncated packet could crash via OOB read"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2017-3737",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523504"
}
],
"notes": [
{
"category": "description",
"text": "OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an \"error state\" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Read/write after SSL object in error state",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3737"
},
{
"category": "external",
"summary": "RHBZ#1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Read/write after SSL object in error state"
},
{
"cve": "CVE-2017-3738",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523510"
}
],
"notes": [
{
"category": "description",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "RHBZ#1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3738",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64"
}
]
}
rhsa-2018_2575
Vulnerability from csaf_redhat
Published
2018-08-28 19:19
Modified
2024-11-15 02:12
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP20.
Security Fix(es):
* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* IBM JDK: DoS in the java.math component (CVE-2018-1517)
* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)
* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)
* OpenSSL: Double-free in DSA code (CVE-2016-0705)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP20.\n\nSecurity Fix(es):\n\n* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* IBM JDK: DoS in the java.math component (CVE-2018-1517)\n\n* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)\n\n* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)\n\n* OpenSSL: Double-free in DSA code (CVE-2016-0705)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2575",
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2575.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2024-11-15T02:12:25+00:00",
"generator": {
"date": "2024-11-15T02:12:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2575",
"initial_release_date": "2018-08-28T19:19:26+00:00",
"revision_history": [
{
"date": "2018-08-28T19:19:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-28T19:19:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:12:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Adam Langley"
],
"organization": "Google/BoringSSL",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-0705",
"discovery_date": "2016-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1310596"
}
],
"notes": [
{
"category": "description",
"text": "A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially crafted DSA private keys that, when processed by an application compiled against OpenSSL, could cause the application to crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenSSL: Double-free in DSA code",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "RHBZ#1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-0705",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705"
}
],
"release_date": "2016-02-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenSSL: Double-free in DSA code"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2018-1517",
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618871"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: DoS in the java.math component",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1517"
},
{
"category": "external",
"summary": "RHBZ#1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1517",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1517"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: DoS in the java.math component"
},
{
"cve": "CVE-2018-1656",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618869"
}
],
"notes": [
{
"category": "description",
"text": "The IBM Java Runtime Environment\u0027s Diagnostic Tooling Framework for Java (DTFJ) (IBM SDK, Java Technology Edition 6.0 , 7.0, and 8.0) does not protect against path traversal attacks when extracting compressed dump files. IBM X-Force ID: 144882.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: path traversal flaw in the Diagnostic Tooling Framework",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1656"
},
{
"category": "external",
"summary": "RHBZ#1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1656",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: path traversal flaw in the Diagnostic Tooling Framework"
},
{
"cve": "CVE-2018-2940",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602146"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2940"
},
{
"category": "external",
"summary": "RHBZ#1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2940",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)"
},
{
"cve": "CVE-2018-2952",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2018-07-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1600925"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2952"
},
{
"category": "external",
"summary": "RHBZ#1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2952",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2952"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)"
},
{
"cve": "CVE-2018-2973",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602145"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSL/TLS to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2973"
},
{
"category": "external",
"summary": "RHBZ#1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2973",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2973"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)"
},
{
"cve": "CVE-2018-12539",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618767"
}
],
"notes": [
{
"category": "description",
"text": "In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on Windows, Linux and AIX JVMs and can be disabled using the command line option -Dcom.ibm.tools.attach.enable=no.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: privilege escalation via insufficiently restricted access to Attach API",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-12539"
},
{
"category": "external",
"summary": "RHBZ#1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-12539",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539"
}
],
"release_date": "2018-05-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: privilege escalation via insufficiently restricted access to Attach API"
}
]
}
RHSA-2018:2575
Vulnerability from csaf_redhat
Published
2018-08-28 19:19
Modified
2025-01-09 05:43
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP20.
Security Fix(es):
* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* IBM JDK: DoS in the java.math component (CVE-2018-1517)
* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)
* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)
* OpenSSL: Double-free in DSA code (CVE-2016-0705)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP20.\n\nSecurity Fix(es):\n\n* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* IBM JDK: DoS in the java.math component (CVE-2018-1517)\n\n* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)\n\n* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)\n\n* OpenSSL: Double-free in DSA code (CVE-2016-0705)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2575",
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2575.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-01-09T05:43:02+00:00",
"generator": {
"date": "2025-01-09T05:43:02+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2575",
"initial_release_date": "2018-08-28T19:19:26+00:00",
"revision_history": [
{
"date": "2018-08-28T19:19:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-28T19:19:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:43:02+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el6_10?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Adam Langley"
],
"organization": "Google/BoringSSL",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-0705",
"discovery_date": "2016-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1310596"
}
],
"notes": [
{
"category": "description",
"text": "A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially crafted DSA private keys that, when processed by an application compiled against OpenSSL, could cause the application to crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenSSL: Double-free in DSA code",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "RHBZ#1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-0705",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705"
}
],
"release_date": "2016-02-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenSSL: Double-free in DSA code"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2018-1517",
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618871"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: DoS in the java.math component",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1517"
},
{
"category": "external",
"summary": "RHBZ#1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1517",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1517"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: DoS in the java.math component"
},
{
"cve": "CVE-2018-1656",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618869"
}
],
"notes": [
{
"category": "description",
"text": "The IBM Java Runtime Environment\u0027s Diagnostic Tooling Framework for Java (DTFJ) (IBM SDK, Java Technology Edition 6.0 , 7.0, and 8.0) does not protect against path traversal attacks when extracting compressed dump files. IBM X-Force ID: 144882.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: path traversal flaw in the Diagnostic Tooling Framework",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1656"
},
{
"category": "external",
"summary": "RHBZ#1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1656",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: path traversal flaw in the Diagnostic Tooling Framework"
},
{
"cve": "CVE-2018-2940",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602146"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2940"
},
{
"category": "external",
"summary": "RHBZ#1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2940",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)"
},
{
"cve": "CVE-2018-2952",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2018-07-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1600925"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2952"
},
{
"category": "external",
"summary": "RHBZ#1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2952",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2952"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)"
},
{
"cve": "CVE-2018-2973",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602145"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSL/TLS to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2973"
},
{
"category": "external",
"summary": "RHBZ#1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2973",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2973"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)"
},
{
"cve": "CVE-2018-12539",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618767"
}
],
"notes": [
{
"category": "description",
"text": "In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on Windows, Linux and AIX JVMs and can be disabled using the command line option -Dcom.ibm.tools.attach.enable=no.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: privilege escalation via insufficiently restricted access to Attach API",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-12539"
},
{
"category": "external",
"summary": "RHBZ#1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-12539",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539"
}
],
"release_date": "2018-05-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-28T19:19:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2575"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Client-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6ComputeNode-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.i686",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.ppc64",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Workstation-Supplementary-6.10.z:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: privilege escalation via insufficiently restricted access to Attach API"
}
]
}
rhsa-2018:2568
Vulnerability from csaf_redhat
Published
2018-08-27 14:20
Modified
2025-01-09 05:42
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP20.
Security Fix(es):
* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* IBM JDK: DoS in the java.math component (CVE-2018-1517)
* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)
* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)
* OpenSSL: Double-free in DSA code (CVE-2016-0705)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP20.\n\nSecurity Fix(es):\n\n* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* IBM JDK: DoS in the java.math component (CVE-2018-1517)\n\n* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)\n\n* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)\n\n* OpenSSL: Double-free in DSA code (CVE-2016-0705)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2568",
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2568.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-01-09T05:42:56+00:00",
"generator": {
"date": "2025-01-09T05:42:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2568",
"initial_release_date": "2018-08-27T14:20:44+00:00",
"revision_history": [
{
"date": "2018-08-27T14:20:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-27T14:20:44+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:42:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Adam Langley"
],
"organization": "Google/BoringSSL",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-0705",
"discovery_date": "2016-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1310596"
}
],
"notes": [
{
"category": "description",
"text": "A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially crafted DSA private keys that, when processed by an application compiled against OpenSSL, could cause the application to crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenSSL: Double-free in DSA code",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "RHBZ#1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-0705",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705"
}
],
"release_date": "2016-02-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenSSL: Double-free in DSA code"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2018-1517",
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618871"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: DoS in the java.math component",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1517"
},
{
"category": "external",
"summary": "RHBZ#1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1517",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1517"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: DoS in the java.math component"
},
{
"cve": "CVE-2018-1656",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618869"
}
],
"notes": [
{
"category": "description",
"text": "The IBM Java Runtime Environment\u0027s Diagnostic Tooling Framework for Java (DTFJ) (IBM SDK, Java Technology Edition 6.0 , 7.0, and 8.0) does not protect against path traversal attacks when extracting compressed dump files. IBM X-Force ID: 144882.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: path traversal flaw in the Diagnostic Tooling Framework",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1656"
},
{
"category": "external",
"summary": "RHBZ#1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1656",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: path traversal flaw in the Diagnostic Tooling Framework"
},
{
"cve": "CVE-2018-2940",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602146"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2940"
},
{
"category": "external",
"summary": "RHBZ#1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2940",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)"
},
{
"cve": "CVE-2018-2952",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2018-07-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1600925"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2952"
},
{
"category": "external",
"summary": "RHBZ#1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2952",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2952"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)"
},
{
"cve": "CVE-2018-2973",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602145"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSL/TLS to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2973"
},
{
"category": "external",
"summary": "RHBZ#1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2973",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2973"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)"
},
{
"cve": "CVE-2018-12539",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618767"
}
],
"notes": [
{
"category": "description",
"text": "In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on Windows, Linux and AIX JVMs and can be disabled using the command line option -Dcom.ibm.tools.attach.enable=no.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: privilege escalation via insufficiently restricted access to Attach API",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-12539"
},
{
"category": "external",
"summary": "RHBZ#1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-12539",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539"
}
],
"release_date": "2018-05-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: privilege escalation via insufficiently restricted access to Attach API"
}
]
}
RHSA-2018:0998
Vulnerability from csaf_redhat
Published
2018-04-10 11:21
Modified
2025-01-09 05:42
Summary
Red Hat Security Advisory: openssl security and bug fix update
Notes
Topic
An update for openssl is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.
Security Fix(es):
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.5 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for openssl is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.\n\nSecurity Fix(es):\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* openssl: Read/write after SSL object in error state (CVE-2017-3737)\n\n* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.5 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0998",
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-US/red_hat_enterprise_linux/7/html/7.5_release_notes/index.html",
"url": "https://access.redhat.com/documentation/en-US/red_hat_enterprise_linux/7/html/7.5_release_notes/index.html"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0998.json"
}
],
"title": "Red Hat Security Advisory: openssl security and bug fix update",
"tracking": {
"current_release_date": "2025-01-09T05:42:31+00:00",
"generator": {
"date": "2025-01-09T05:42:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:0998",
"initial_release_date": "2018-04-10T11:21:46+00:00",
"revision_history": [
{
"date": "2018-04-10T11:21:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-04-10T11:21:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:42:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-static-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.i686",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.i686",
"product_id": "openssl-static-1:1.0.2k-12.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.i686",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686",
"product_id": "openssl-libs-1:1.0.2k-12.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.i686",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686",
"product_id": "openssl-devel-1:1.0.2k-12.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.src",
"product": {
"name": "openssl-1:1.0.2k-12.el7.src",
"product_id": "openssl-1:1.0.2k-12.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.ppc",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc",
"product_id": "openssl-libs-1:1.0.2k-12.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.ppc",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc",
"product_id": "openssl-devel-1:1.0.2k-12.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.ppc",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc",
"product_id": "openssl-static-1:1.0.2k-12.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=ppc\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-static-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.s390",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390",
"product_id": "openssl-libs-1:1.0.2k-12.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.s390",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390",
"product_id": "openssl-devel-1:1.0.2k-12.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.s390",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.s390",
"product_id": "openssl-static-1:1.0.2k-12.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=s390\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-libs-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-devel-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-static-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-perl-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-static-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T11:21:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
"product_ids": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2017-3737",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523504"
}
],
"notes": [
{
"category": "description",
"text": "OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an \"error state\" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Read/write after SSL object in error state",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3737"
},
{
"category": "external",
"summary": "RHBZ#1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T11:21:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
"product_ids": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Read/write after SSL object in error state"
},
{
"cve": "CVE-2017-3738",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523510"
}
],
"notes": [
{
"category": "description",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "RHBZ#1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3738",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T11:21:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
"product_ids": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64"
}
]
}
rhsa-2018_2568
Vulnerability from csaf_redhat
Published
2018-08-27 14:20
Modified
2024-11-15 02:12
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP20.
Security Fix(es):
* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* IBM JDK: DoS in the java.math component (CVE-2018-1517)
* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)
* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)
* OpenSSL: Double-free in DSA code (CVE-2016-0705)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP20.\n\nSecurity Fix(es):\n\n* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* IBM JDK: DoS in the java.math component (CVE-2018-1517)\n\n* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)\n\n* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)\n\n* OpenSSL: Double-free in DSA code (CVE-2016-0705)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2568",
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2568.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2024-11-15T02:12:20+00:00",
"generator": {
"date": "2024-11-15T02:12:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2568",
"initial_release_date": "2018-08-27T14:20:44+00:00",
"revision_history": [
{
"date": "2018-08-27T14:20:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-08-27T14:20:44+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:12:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-plugin@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el7?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el7?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-jdbc@1.8.0.5.20-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-src@1.8.0.5.20-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_id": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-demo@1.8.0.5.20-1jpp.1.el7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Supplementary (v. 7)",
"product_id": "7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Client-7.5.Z-Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Supplementary (v. 7)",
"product_id": "7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.Z-ComputeNode"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 7)",
"product_id": "7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Server-7.5.Z-Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 7)",
"product_id": "7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
},
"product_reference": "java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5.Z-Workstation"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Adam Langley"
],
"organization": "Google/BoringSSL",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-0705",
"discovery_date": "2016-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1310596"
}
],
"notes": [
{
"category": "description",
"text": "A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially crafted DSA private keys that, when processed by an application compiled against OpenSSL, could cause the application to crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenSSL: Double-free in DSA code",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "RHBZ#1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-0705",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705"
}
],
"release_date": "2016-02-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenSSL: Double-free in DSA code"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2018-1517",
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618871"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: DoS in the java.math component",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1517"
},
{
"category": "external",
"summary": "RHBZ#1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1517",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1517"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: DoS in the java.math component"
},
{
"cve": "CVE-2018-1656",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618869"
}
],
"notes": [
{
"category": "description",
"text": "The IBM Java Runtime Environment\u0027s Diagnostic Tooling Framework for Java (DTFJ) (IBM SDK, Java Technology Edition 6.0 , 7.0, and 8.0) does not protect against path traversal attacks when extracting compressed dump files. IBM X-Force ID: 144882.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: path traversal flaw in the Diagnostic Tooling Framework",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1656"
},
{
"category": "external",
"summary": "RHBZ#1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1656",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: path traversal flaw in the Diagnostic Tooling Framework"
},
{
"cve": "CVE-2018-2940",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602146"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2940"
},
{
"category": "external",
"summary": "RHBZ#1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2940",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)"
},
{
"cve": "CVE-2018-2952",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2018-07-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1600925"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2952"
},
{
"category": "external",
"summary": "RHBZ#1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2952",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2952"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)"
},
{
"cve": "CVE-2018-2973",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602145"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSL/TLS to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2973"
},
{
"category": "external",
"summary": "RHBZ#1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2973",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2973"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)"
},
{
"cve": "CVE-2018-12539",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618767"
}
],
"notes": [
{
"category": "description",
"text": "In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on Windows, Linux and AIX JVMs and can be disabled using the command line option -Dcom.ibm.tools.attach.enable=no.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: privilege escalation via insufficiently restricted access to Attach API",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-12539"
},
{
"category": "external",
"summary": "RHBZ#1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-12539",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539"
}
],
"release_date": "2018-05-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-08-27T14:20:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAll running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Client-7.5.Z-Client:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7ComputeNode-7.5.Z-ComputeNode:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Server-7.5.Z-Server:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-demo-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-jdbc-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-plugin-1:1.8.0.5.20-1jpp.1.el7.x86_64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.ppc64le",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.s390x",
"7Workstation-7.5.Z-Workstation:java-1.8.0-ibm-src-1:1.8.0.5.20-1jpp.1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: privilege escalation via insufficiently restricted access to Attach API"
}
]
}
rhsa-2018_2713
Vulnerability from csaf_redhat
Published
2018-09-17 14:54
Modified
2024-11-15 02:12
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP20.
Security Fix(es):
* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* IBM JDK: DoS in the java.math component (CVE-2018-1517)
* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)
* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)
* OpenSSL: Double-free in DSA code (CVE-2016-0705)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP20.\n\nSecurity Fix(es):\n\n* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* IBM JDK: DoS in the java.math component (CVE-2018-1517)\n\n* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)\n\n* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)\n\n* OpenSSL: Double-free in DSA code (CVE-2016-0705)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2713",
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2713.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2024-11-15T02:12:51+00:00",
"generator": {
"date": "2024-11-15T02:12:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2713",
"initial_release_date": "2018-09-17T14:54:13+00:00",
"revision_history": [
{
"date": "2018-09-17T14:54:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-09-17T14:54:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T02:12:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Adam Langley"
],
"organization": "Google/BoringSSL",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-0705",
"discovery_date": "2016-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1310596"
}
],
"notes": [
{
"category": "description",
"text": "A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially crafted DSA private keys that, when processed by an application compiled against OpenSSL, could cause the application to crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenSSL: Double-free in DSA code",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "RHBZ#1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-0705",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705"
}
],
"release_date": "2016-02-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenSSL: Double-free in DSA code"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2018-1517",
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618871"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: DoS in the java.math component",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1517"
},
{
"category": "external",
"summary": "RHBZ#1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1517",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1517"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: DoS in the java.math component"
},
{
"cve": "CVE-2018-1656",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618869"
}
],
"notes": [
{
"category": "description",
"text": "The IBM Java Runtime Environment\u0027s Diagnostic Tooling Framework for Java (DTFJ) (IBM SDK, Java Technology Edition 6.0 , 7.0, and 8.0) does not protect against path traversal attacks when extracting compressed dump files. IBM X-Force ID: 144882.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: path traversal flaw in the Diagnostic Tooling Framework",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1656"
},
{
"category": "external",
"summary": "RHBZ#1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1656",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: path traversal flaw in the Diagnostic Tooling Framework"
},
{
"cve": "CVE-2018-2940",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602146"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2940"
},
{
"category": "external",
"summary": "RHBZ#1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2940",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)"
},
{
"cve": "CVE-2018-2952",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2018-07-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1600925"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2952"
},
{
"category": "external",
"summary": "RHBZ#1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2952",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2952"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)"
},
{
"cve": "CVE-2018-2973",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602145"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSL/TLS to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2973"
},
{
"category": "external",
"summary": "RHBZ#1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2973",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2973"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)"
},
{
"cve": "CVE-2018-12539",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618767"
}
],
"notes": [
{
"category": "description",
"text": "In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on Windows, Linux and AIX JVMs and can be disabled using the command line option -Dcom.ibm.tools.attach.enable=no.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: privilege escalation via insufficiently restricted access to Attach API",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-12539"
},
{
"category": "external",
"summary": "RHBZ#1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-12539",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539"
}
],
"release_date": "2018-05-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: privilege escalation via insufficiently restricted access to Attach API"
}
]
}
rhsa-2018:2185
Vulnerability from csaf_redhat
Published
2018-07-12 16:14
Modified
2025-01-09 05:42
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 7 security update
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this release as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.29 packages that are part
of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services
Apache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,
enhancements and component upgrades included in this release.
This release upgrades OpenSSL to version 1.0.2.n
Security Fix(es):
* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)
* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)
* openssl: certificate message OOB reads (CVE-2016-6306)
* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)
* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-6306
and CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this release as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release adds the new Apache HTTP Server 2.4.29 packages that are part\nof the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services\nApache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,\nenhancements and component upgrades included in this release.\n\nThis release upgrades OpenSSL to version 1.0.2.n\n\nSecurity Fix(es):\n\n* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)\n\n* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)\n\n* openssl: certificate message OOB reads (CVE-2016-6306)\n\n* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)\n\n* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* openssl: Read/write after SSL object in error state (CVE-2017-3737)\n\n* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-6306 \nand CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2185",
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/"
},
{
"category": "external",
"summary": "1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "JBCS-373",
"url": "https://issues.redhat.com/browse/JBCS-373"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2185.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 7 security update",
"tracking": {
"current_release_date": "2025-01-09T05:42:24+00:00",
"generator": {
"date": "2025-01-09T05:42:24+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2185",
"initial_release_date": "2018-07-12T16:14:46+00:00",
"revision_history": [
{
"date": "2018-07-12T16:14:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-07-12T16:14:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:42:24+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Core Services on RHEL 7 Server",
"product": {
"name": "Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Core Services"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt-debuginfo@2.4.1-19.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx-debuginfo@0.9.6-17.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb-debuginfo@5.4-36.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.8-1.Final_redhat_2.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.43-1.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.43-1.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.43-1.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.29.0-8.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.29.0-8.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.1-23.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.29-17.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.29-17.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo@1.1.0-1.redhat_2.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.43-1.redhat_1.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"product": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"product_id": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.29-17.jbcs.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch"
},
"product_reference": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-2182",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2016-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1367340"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds write flaw was discovered in the OpenSSL BN_bn2dec() function. An attacker able to make an application using OpenSSL to process a large BIGNUM could cause the application to crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-2182"
},
{
"category": "external",
"summary": "RHBZ#1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-2182",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2182"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()"
},
{
"cve": "CVE-2016-4975",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2016-09-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1375968"
}
],
"notes": [
{
"category": "description",
"text": "It was found that Apache was vulnerable to a HTTP response splitting attack for sites which use mod_userdir. An attacker could use this flaw to inject CRLF characters into the HTTP header and could possibly gain access to secure data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-4975"
},
{
"category": "external",
"summary": "RHBZ#1375968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1375968"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-4975",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975"
}
],
"release_date": "2018-08-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir"
},
{
"cve": "CVE-2016-6302",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-08-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369855"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow flaw leading to a buffer over-read was found in the way OpenSSL parsed TLS session tickets. A remote attacker could use this flaw to crash a TLS server using OpenSSL if it used SHA-512 as HMAC for session tickets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Insufficient TLS session ticket HMAC length checks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6302"
},
{
"category": "external",
"summary": "RHBZ#1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6302",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6302"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Insufficient TLS session ticket HMAC length checks"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Shi Lei"
],
"organization": "Gear Team of Qihoo 360 Inc.",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-6306",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1377594"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read flaws were found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use these flaws to crash a TLS/SSL server or client using OpenSSL.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: certificate message OOB reads",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6306"
},
{
"category": "external",
"summary": "RHBZ#1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6306",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 1.2,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: certificate message OOB reads"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
}
],
"cve": "CVE-2016-7055",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2016-10-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1393929"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker\u0027s direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Carry propagating bug in Montgomery multiplication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7055"
},
{
"category": "external",
"summary": "RHBZ#1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7055",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20161110.txt",
"url": "https://www.openssl.org/news/secadv/20161110.txt"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2016-10-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: Carry propagating bug in Montgomery multiplication"
},
{
"cve": "CVE-2017-3731",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416852"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow leading to an out of bounds read flaw was found in OpenSSL. A remote attacker could possibly use this flaw to crash a 32-bit TLS/SSL server or client using OpenSSL if it used the RC4-MD5 cipher suite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Truncated packet could crash via OOB read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3731"
},
{
"category": "external",
"summary": "RHBZ#1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Truncated packet could crash via OOB read"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2017-3737",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523504"
}
],
"notes": [
{
"category": "description",
"text": "OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an \"error state\" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Read/write after SSL object in error state",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3737"
},
{
"category": "external",
"summary": "RHBZ#1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Read/write after SSL object in error state"
},
{
"cve": "CVE-2017-3738",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523510"
}
],
"notes": [
{
"category": "description",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "RHBZ#1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3738",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64"
}
]
}
rhsa-2018_2186
Vulnerability from csaf_redhat
Published
2018-07-12 16:14
Modified
2024-11-22 11:15
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 6 security update
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this release as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.29 packages that are part
of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services
Apache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,
enhancements and component upgrades included in this release.
This release upgrades OpenSSL to version 1.0.2.n
Security Fix(es):
* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)
* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)
* openssl: certificate message OOB reads (CVE-2016-6306)
* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)
* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-6306
and CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this release as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release adds the new Apache HTTP Server 2.4.29 packages that are part\nof the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services\nApache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,\nenhancements and component upgrades included in this release.\n\nThis release upgrades OpenSSL to version 1.0.2.n\n\nSecurity Fix(es):\n\n* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)\n\n* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)\n\n* openssl: certificate message OOB reads (CVE-2016-6306)\n\n* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)\n\n* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* openssl: Read/write after SSL object in error state (CVE-2017-3737)\n\n* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-6306 \nand CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2186",
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/"
},
{
"category": "external",
"summary": "1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "JBCS-372",
"url": "https://issues.redhat.com/browse/JBCS-372"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2186.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 6 security update",
"tracking": {
"current_release_date": "2024-11-22T11:15:56+00:00",
"generator": {
"date": "2024-11-22T11:15:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:2186",
"initial_release_date": "2018-07-12T16:14:52+00:00",
"revision_history": [
{
"date": "2018-07-12T16:14:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-07-12T16:14:52+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:15:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Core Services on RHEL 6 Server",
"product": {
"name": "Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Core Services"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt-debuginfo@2.4.1-19.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx-debuginfo@0.9.6-17.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb-debuginfo@5.4-36.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.8-1.Final_redhat_2.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.43-1.redhat_1.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.43-1.redhat_1.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.43-1.redhat_1.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-14.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-14.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.29.0-8.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.29.0-8.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.1-23.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.29-17.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.29-17.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo@1.1.0-1.redhat_2.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt-debuginfo@2.4.1-19.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx-debuginfo@0.9.6-17.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb-debuginfo@5.4-36.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.8-1.Final_redhat_2.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.43-1.redhat_1.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.43-1.redhat_1.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.43-1.redhat_1.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-14.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-14.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.29.0-8.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"product_id": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.29.0-8.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.1-23.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.29-17.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.29-17.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo@1.1.0-1.redhat_2.jbcs.el6?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.43-1.redhat_1.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el6?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el6?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"product": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"product_id": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.29-17.jbcs.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch"
},
"product_reference": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-2182",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2016-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1367340"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds write flaw was discovered in the OpenSSL BN_bn2dec() function. An attacker able to make an application using OpenSSL to process a large BIGNUM could cause the application to crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-2182"
},
{
"category": "external",
"summary": "RHBZ#1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-2182",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2182"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()"
},
{
"cve": "CVE-2016-4975",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2016-09-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1375968"
}
],
"notes": [
{
"category": "description",
"text": "It was found that Apache was vulnerable to a HTTP response splitting attack for sites which use mod_userdir. An attacker could use this flaw to inject CRLF characters into the HTTP header and could possibly gain access to secure data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-4975"
},
{
"category": "external",
"summary": "RHBZ#1375968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1375968"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-4975",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975"
}
],
"release_date": "2018-08-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir"
},
{
"cve": "CVE-2016-6302",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-08-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369855"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow flaw leading to a buffer over-read was found in the way OpenSSL parsed TLS session tickets. A remote attacker could use this flaw to crash a TLS server using OpenSSL if it used SHA-512 as HMAC for session tickets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Insufficient TLS session ticket HMAC length checks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6302"
},
{
"category": "external",
"summary": "RHBZ#1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6302",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6302"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Insufficient TLS session ticket HMAC length checks"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Shi Lei"
],
"organization": "Gear Team of Qihoo 360 Inc.",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-6306",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1377594"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read flaws were found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use these flaws to crash a TLS/SSL server or client using OpenSSL.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: certificate message OOB reads",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6306"
},
{
"category": "external",
"summary": "RHBZ#1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6306",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 1.2,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: certificate message OOB reads"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
}
],
"cve": "CVE-2016-7055",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2016-10-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1393929"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker\u0027s direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Carry propagating bug in Montgomery multiplication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7055"
},
{
"category": "external",
"summary": "RHBZ#1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7055",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20161110.txt",
"url": "https://www.openssl.org/news/secadv/20161110.txt"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2016-10-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: Carry propagating bug in Montgomery multiplication"
},
{
"cve": "CVE-2017-3731",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416852"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow leading to an out of bounds read flaw was found in OpenSSL. A remote attacker could possibly use this flaw to crash a 32-bit TLS/SSL server or client using OpenSSL if it used the RC4-MD5 cipher suite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Truncated packet could crash via OOB read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3731"
},
{
"category": "external",
"summary": "RHBZ#1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Truncated packet could crash via OOB read"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2017-3737",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523504"
}
],
"notes": [
{
"category": "description",
"text": "OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an \"error state\" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Read/write after SSL object in error state",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3737"
},
{
"category": "external",
"summary": "RHBZ#1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Read/write after SSL object in error state"
},
{
"cve": "CVE-2017-3738",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523510"
}
],
"notes": [
{
"category": "description",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "RHBZ#1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3738",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64"
}
]
}
rhsa-2018:2186
Vulnerability from csaf_redhat
Published
2018-07-12 16:14
Modified
2025-01-09 05:42
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 6 security update
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this release as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.29 packages that are part
of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services
Apache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,
enhancements and component upgrades included in this release.
This release upgrades OpenSSL to version 1.0.2.n
Security Fix(es):
* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)
* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)
* openssl: certificate message OOB reads (CVE-2016-6306)
* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)
* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-6306
and CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this release as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release adds the new Apache HTTP Server 2.4.29 packages that are part\nof the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services\nApache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,\nenhancements and component upgrades included in this release.\n\nThis release upgrades OpenSSL to version 1.0.2.n\n\nSecurity Fix(es):\n\n* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)\n\n* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)\n\n* openssl: certificate message OOB reads (CVE-2016-6306)\n\n* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)\n\n* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* openssl: Read/write after SSL object in error state (CVE-2017-3737)\n\n* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-6306 \nand CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2186",
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/"
},
{
"category": "external",
"summary": "1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "JBCS-372",
"url": "https://issues.redhat.com/browse/JBCS-372"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2186.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 6 security update",
"tracking": {
"current_release_date": "2025-01-09T05:42:17+00:00",
"generator": {
"date": "2025-01-09T05:42:17+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2186",
"initial_release_date": "2018-07-12T16:14:52+00:00",
"revision_history": [
{
"date": "2018-07-12T16:14:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-07-12T16:14:52+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:42:17+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Core Services on RHEL 6 Server",
"product": {
"name": "Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Core Services"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt-debuginfo@2.4.1-19.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx-debuginfo@0.9.6-17.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb-debuginfo@5.4-36.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.8-1.Final_redhat_2.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.43-1.redhat_1.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.43-1.redhat_1.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.43-1.redhat_1.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-14.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-14.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.29.0-8.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.29.0-8.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.1-23.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.29-17.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.29-17.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo@1.1.0-1.redhat_2.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt-debuginfo@2.4.1-19.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx-debuginfo@0.9.6-17.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb-debuginfo@5.4-36.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.8-1.Final_redhat_2.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.43-1.redhat_1.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.43-1.redhat_1.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.43-1.redhat_1.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-14.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-14.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.29.0-8.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"product_id": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.29.0-8.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.1-23.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.29-17.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.29-17.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo@1.1.0-1.redhat_2.jbcs.el6?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.43-1.redhat_1.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el6?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el6?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"product": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"product_id": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.29-17.jbcs.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch"
},
"product_reference": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-2182",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2016-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1367340"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds write flaw was discovered in the OpenSSL BN_bn2dec() function. An attacker able to make an application using OpenSSL to process a large BIGNUM could cause the application to crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-2182"
},
{
"category": "external",
"summary": "RHBZ#1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-2182",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2182"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()"
},
{
"cve": "CVE-2016-4975",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2016-09-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1375968"
}
],
"notes": [
{
"category": "description",
"text": "It was found that Apache was vulnerable to a HTTP response splitting attack for sites which use mod_userdir. An attacker could use this flaw to inject CRLF characters into the HTTP header and could possibly gain access to secure data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-4975"
},
{
"category": "external",
"summary": "RHBZ#1375968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1375968"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-4975",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975"
}
],
"release_date": "2018-08-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir"
},
{
"cve": "CVE-2016-6302",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-08-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369855"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow flaw leading to a buffer over-read was found in the way OpenSSL parsed TLS session tickets. A remote attacker could use this flaw to crash a TLS server using OpenSSL if it used SHA-512 as HMAC for session tickets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Insufficient TLS session ticket HMAC length checks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6302"
},
{
"category": "external",
"summary": "RHBZ#1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6302",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6302"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Insufficient TLS session ticket HMAC length checks"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Shi Lei"
],
"organization": "Gear Team of Qihoo 360 Inc.",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-6306",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1377594"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read flaws were found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use these flaws to crash a TLS/SSL server or client using OpenSSL.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: certificate message OOB reads",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6306"
},
{
"category": "external",
"summary": "RHBZ#1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6306",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 1.2,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: certificate message OOB reads"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
}
],
"cve": "CVE-2016-7055",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2016-10-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1393929"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker\u0027s direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Carry propagating bug in Montgomery multiplication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7055"
},
{
"category": "external",
"summary": "RHBZ#1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7055",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20161110.txt",
"url": "https://www.openssl.org/news/secadv/20161110.txt"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2016-10-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: Carry propagating bug in Montgomery multiplication"
},
{
"cve": "CVE-2017-3731",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416852"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow leading to an out of bounds read flaw was found in OpenSSL. A remote attacker could possibly use this flaw to crash a 32-bit TLS/SSL server or client using OpenSSL if it used the RC4-MD5 cipher suite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Truncated packet could crash via OOB read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3731"
},
{
"category": "external",
"summary": "RHBZ#1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Truncated packet could crash via OOB read"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2017-3737",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523504"
}
],
"notes": [
{
"category": "description",
"text": "OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an \"error state\" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Read/write after SSL object in error state",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3737"
},
{
"category": "external",
"summary": "RHBZ#1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Read/write after SSL object in error state"
},
{
"cve": "CVE-2017-3738",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523510"
}
],
"notes": [
{
"category": "description",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "RHBZ#1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3738",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64"
}
]
}
RHSA-2018:2185
Vulnerability from csaf_redhat
Published
2018-07-12 16:14
Modified
2025-01-09 05:42
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 7 security update
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this release as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.29 packages that are part
of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services
Apache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,
enhancements and component upgrades included in this release.
This release upgrades OpenSSL to version 1.0.2.n
Security Fix(es):
* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)
* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)
* openssl: certificate message OOB reads (CVE-2016-6306)
* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)
* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-6306
and CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this release as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release adds the new Apache HTTP Server 2.4.29 packages that are part\nof the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services\nApache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,\nenhancements and component upgrades included in this release.\n\nThis release upgrades OpenSSL to version 1.0.2.n\n\nSecurity Fix(es):\n\n* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)\n\n* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)\n\n* openssl: certificate message OOB reads (CVE-2016-6306)\n\n* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)\n\n* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* openssl: Read/write after SSL object in error state (CVE-2017-3737)\n\n* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-6306 \nand CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2185",
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/"
},
{
"category": "external",
"summary": "1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "JBCS-373",
"url": "https://issues.redhat.com/browse/JBCS-373"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2185.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 7 security update",
"tracking": {
"current_release_date": "2025-01-09T05:42:24+00:00",
"generator": {
"date": "2025-01-09T05:42:24+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2185",
"initial_release_date": "2018-07-12T16:14:46+00:00",
"revision_history": [
{
"date": "2018-07-12T16:14:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-07-12T16:14:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:42:24+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Core Services on RHEL 7 Server",
"product": {
"name": "Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Core Services"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt-debuginfo@2.4.1-19.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx-debuginfo@0.9.6-17.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb-debuginfo@5.4-36.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.8-1.Final_redhat_2.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.43-1.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.43-1.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.43-1.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-9.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.0.2n-11.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.29.0-8.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.29.0-8.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.1-23.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.29-17.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.29-17.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.29-17.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo@1.1.0-1.redhat_2.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.43-1.redhat_1.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"product": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"product_id": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.29-17.jbcs.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch"
},
"product_reference": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-2182",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2016-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1367340"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds write flaw was discovered in the OpenSSL BN_bn2dec() function. An attacker able to make an application using OpenSSL to process a large BIGNUM could cause the application to crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-2182"
},
{
"category": "external",
"summary": "RHBZ#1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-2182",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2182"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()"
},
{
"cve": "CVE-2016-4975",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2016-09-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1375968"
}
],
"notes": [
{
"category": "description",
"text": "It was found that Apache was vulnerable to a HTTP response splitting attack for sites which use mod_userdir. An attacker could use this flaw to inject CRLF characters into the HTTP header and could possibly gain access to secure data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-4975"
},
{
"category": "external",
"summary": "RHBZ#1375968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1375968"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-4975",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975"
}
],
"release_date": "2018-08-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir"
},
{
"cve": "CVE-2016-6302",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-08-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369855"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow flaw leading to a buffer over-read was found in the way OpenSSL parsed TLS session tickets. A remote attacker could use this flaw to crash a TLS server using OpenSSL if it used SHA-512 as HMAC for session tickets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Insufficient TLS session ticket HMAC length checks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6302"
},
{
"category": "external",
"summary": "RHBZ#1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6302",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6302"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Insufficient TLS session ticket HMAC length checks"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Shi Lei"
],
"organization": "Gear Team of Qihoo 360 Inc.",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-6306",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1377594"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read flaws were found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use these flaws to crash a TLS/SSL server or client using OpenSSL.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: certificate message OOB reads",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6306"
},
{
"category": "external",
"summary": "RHBZ#1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6306",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 1.2,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: certificate message OOB reads"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
}
],
"cve": "CVE-2016-7055",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2016-10-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1393929"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker\u0027s direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Carry propagating bug in Montgomery multiplication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7055"
},
{
"category": "external",
"summary": "RHBZ#1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7055",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20161110.txt",
"url": "https://www.openssl.org/news/secadv/20161110.txt"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2016-10-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: Carry propagating bug in Montgomery multiplication"
},
{
"cve": "CVE-2017-3731",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416852"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow leading to an out of bounds read flaw was found in OpenSSL. A remote attacker could possibly use this flaw to crash a 32-bit TLS/SSL server or client using OpenSSL if it used the RC4-MD5 cipher suite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Truncated packet could crash via OOB read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3731"
},
{
"category": "external",
"summary": "RHBZ#1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Truncated packet could crash via OOB read"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2017-3737",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523504"
}
],
"notes": [
{
"category": "description",
"text": "OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an \"error state\" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Read/write after SSL object in error state",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3737"
},
{
"category": "external",
"summary": "RHBZ#1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Read/write after SSL object in error state"
},
{
"cve": "CVE-2017-3738",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523510"
}
],
"notes": [
{
"category": "description",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "RHBZ#1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3738",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:46+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2185"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64"
}
]
}
RHSA-2018:2187
Vulnerability from csaf_redhat
Published
2018-07-12 16:04
Modified
2025-01-09 05:43
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 security update
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available.
Red Hat Product Security has rated this release as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.29 packages that are part
of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services
Apache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer
to the Release Notes for information on the most significant bug fixes,
enhancements and component upgrades included in this release.
This release upgrades OpenSSL to version 1.0.2.n
Security Fix(es):
* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)
* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)
* openssl: certificate message OOB reads (CVE-2016-6306)
* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)
* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-6306
and CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360
Inc.) as the original reporter of CVE-2016-6306.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available.\n\nRed Hat Product Security has rated this release as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release adds the new Apache HTTP Server 2.4.29 packages that are part\nof the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services\nApache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer\nto the Release Notes for information on the most significant bug fixes,\nenhancements and component upgrades included in this release.\n\nThis release upgrades OpenSSL to version 1.0.2.n\n\nSecurity Fix(es):\n\n* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)\n\n* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)\n\n* openssl: certificate message OOB reads (CVE-2016-6306)\n\n* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)\n\n* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* openssl: Read/write after SSL object in error state (CVE-2017-3737)\n\n* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-6306\nand CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360\nInc.) as the original reporter of CVE-2016-6306.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2187",
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/"
},
{
"category": "external",
"summary": "1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2187.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 security update",
"tracking": {
"current_release_date": "2025-01-09T05:43:14+00:00",
"generator": {
"date": "2025-01-09T05:43:14+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2187",
"initial_release_date": "2018-07-12T16:04:49+00:00",
"revision_history": [
{
"date": "2018-07-12T16:04:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-07-12T16:04:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:43:14+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Text-Only JBCS",
"product": {
"name": "Text-Only JBCS",
"product_id": "Text-Only JBCS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Core Services"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-2182",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2016-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1367340"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds write flaw was discovered in the OpenSSL BN_bn2dec() function. An attacker able to make an application using OpenSSL to process a large BIGNUM could cause the application to crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-2182"
},
{
"category": "external",
"summary": "RHBZ#1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-2182",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2182"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()"
},
{
"cve": "CVE-2016-6302",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-08-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369855"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow flaw leading to a buffer over-read was found in the way OpenSSL parsed TLS session tickets. A remote attacker could use this flaw to crash a TLS server using OpenSSL if it used SHA-512 as HMAC for session tickets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Insufficient TLS session ticket HMAC length checks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6302"
},
{
"category": "external",
"summary": "RHBZ#1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6302",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6302"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Insufficient TLS session ticket HMAC length checks"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Shi Lei"
],
"organization": "Gear Team of Qihoo 360 Inc.",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-6306",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1377594"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read flaws were found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use these flaws to crash a TLS/SSL server or client using OpenSSL.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: certificate message OOB reads",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6306"
},
{
"category": "external",
"summary": "RHBZ#1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6306",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 1.2,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: certificate message OOB reads"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
}
],
"cve": "CVE-2016-7055",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2016-10-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1393929"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker\u0027s direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Carry propagating bug in Montgomery multiplication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7055"
},
{
"category": "external",
"summary": "RHBZ#1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7055",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20161110.txt",
"url": "https://www.openssl.org/news/secadv/20161110.txt"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2016-10-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: Carry propagating bug in Montgomery multiplication"
},
{
"cve": "CVE-2017-3731",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416852"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow leading to an out of bounds read flaw was found in OpenSSL. A remote attacker could possibly use this flaw to crash a 32-bit TLS/SSL server or client using OpenSSL if it used the RC4-MD5 cipher suite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Truncated packet could crash via OOB read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3731"
},
{
"category": "external",
"summary": "RHBZ#1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Truncated packet could crash via OOB read"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2017-3737",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523504"
}
],
"notes": [
{
"category": "description",
"text": "OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an \"error state\" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Read/write after SSL object in error state",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3737"
},
{
"category": "external",
"summary": "RHBZ#1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Read/write after SSL object in error state"
},
{
"cve": "CVE-2017-3738",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523510"
}
],
"notes": [
{
"category": "description",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "RHBZ#1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3738",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64"
}
]
}
rhsa-2018_0998
Vulnerability from csaf_redhat
Published
2018-04-10 11:21
Modified
2024-11-22 11:16
Summary
Red Hat Security Advisory: openssl security and bug fix update
Notes
Topic
An update for openssl is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.
Security Fix(es):
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.5 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for openssl is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.\n\nSecurity Fix(es):\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* openssl: Read/write after SSL object in error state (CVE-2017-3737)\n\n* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.5 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0998",
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-US/red_hat_enterprise_linux/7/html/7.5_release_notes/index.html",
"url": "https://access.redhat.com/documentation/en-US/red_hat_enterprise_linux/7/html/7.5_release_notes/index.html"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0998.json"
}
],
"title": "Red Hat Security Advisory: openssl security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T11:16:08+00:00",
"generator": {
"date": "2024-11-22T11:16:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:0998",
"initial_release_date": "2018-04-10T11:21:46+00:00",
"revision_history": [
{
"date": "2018-04-10T11:21:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-04-10T11:21:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:16:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-static-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.x86_64",
"product": {
"name": "openssl-1:1.0.2k-12.el7.x86_64",
"product_id": "openssl-1:1.0.2k-12.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.i686",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.i686",
"product_id": "openssl-static-1:1.0.2k-12.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.i686",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686",
"product_id": "openssl-libs-1:1.0.2k-12.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.i686",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686",
"product_id": "openssl-devel-1:1.0.2k-12.el7.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.src",
"product": {
"name": "openssl-1:1.0.2k-12.el7.src",
"product_id": "openssl-1:1.0.2k-12.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.ppc",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc",
"product_id": "openssl-libs-1:1.0.2k-12.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.ppc",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc",
"product_id": "openssl-devel-1:1.0.2k-12.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.ppc",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc",
"product_id": "openssl-static-1:1.0.2k-12.el7.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=ppc\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-static-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"product": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"product_id": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.2k-12.el7?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.s390",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390",
"product_id": "openssl-libs-1:1.0.2k-12.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.s390",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390",
"product_id": "openssl-devel-1:1.0.2k-12.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.s390",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.s390",
"product_id": "openssl-static-1:1.0.2k-12.el7.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=s390\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-libs-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-devel-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-static-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-12.el7.s390x",
"product": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x",
"product_id": "openssl-perl-1:1.0.2k-12.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.2k-12.el7?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"product": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"product_id": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.2k-12.el7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-static-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-static-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-static@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-1:1.0.2k-12.el7.aarch64",
"product": {
"name": "openssl-1:1.0.2k-12.el7.aarch64",
"product_id": "openssl-1:1.0.2k-12.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.0.2k-12.el7?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Client-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Server-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src"
},
"product_reference": "openssl-1:1.0.2k-12.el7.src",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-devel-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-libs-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-perl-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.i686",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-static-1:1.0.2k-12.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
},
"product_reference": "openssl-static-1:1.0.2k-12.el7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T11:21:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
"product_ids": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2017-3737",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523504"
}
],
"notes": [
{
"category": "description",
"text": "OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an \"error state\" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Read/write after SSL object in error state",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3737"
},
{
"category": "external",
"summary": "RHBZ#1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T11:21:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
"product_ids": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Read/write after SSL object in error state"
},
{
"cve": "CVE-2017-3738",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523510"
}
],
"notes": [
{
"category": "description",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "RHBZ#1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3738",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-10T11:21:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
"product_ids": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0998"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Client-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Client-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7ComputeNode-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7ComputeNode-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-Alt-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-Alt-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Server-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Server-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-7.5:openssl-static-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.src",
"7Workstation-optional-7.5:openssl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-debuginfo-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-devel-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-libs-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-perl-1:1.0.2k-12.el7.x86_64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.aarch64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.i686",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.ppc64le",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.s390x",
"7Workstation-optional-7.5:openssl-static-1:1.0.2k-12.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64"
}
]
}
rhsa-2018:2187
Vulnerability from csaf_redhat
Published
2018-07-12 16:04
Modified
2025-01-09 05:43
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 security update
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available.
Red Hat Product Security has rated this release as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.29 packages that are part
of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services
Apache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer
to the Release Notes for information on the most significant bug fixes,
enhancements and component upgrades included in this release.
This release upgrades OpenSSL to version 1.0.2.n
Security Fix(es):
* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)
* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)
* openssl: certificate message OOB reads (CVE-2016-6306)
* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)
* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-6306
and CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360
Inc.) as the original reporter of CVE-2016-6306.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available.\n\nRed Hat Product Security has rated this release as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release adds the new Apache HTTP Server 2.4.29 packages that are part\nof the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services\nApache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer\nto the Release Notes for information on the most significant bug fixes,\nenhancements and component upgrades included in this release.\n\nThis release upgrades OpenSSL to version 1.0.2.n\n\nSecurity Fix(es):\n\n* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)\n\n* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)\n\n* openssl: certificate message OOB reads (CVE-2016-6306)\n\n* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)\n\n* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* openssl: Read/write after SSL object in error state (CVE-2017-3737)\n\n* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-6306\nand CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360\nInc.) as the original reporter of CVE-2016-6306.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2187",
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/"
},
{
"category": "external",
"summary": "1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2187.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 security update",
"tracking": {
"current_release_date": "2025-01-09T05:43:14+00:00",
"generator": {
"date": "2025-01-09T05:43:14+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2187",
"initial_release_date": "2018-07-12T16:04:49+00:00",
"revision_history": [
{
"date": "2018-07-12T16:04:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-07-12T16:04:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:43:14+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Text-Only JBCS",
"product": {
"name": "Text-Only JBCS",
"product_id": "Text-Only JBCS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Core Services"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-2182",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2016-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1367340"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds write flaw was discovered in the OpenSSL BN_bn2dec() function. An attacker able to make an application using OpenSSL to process a large BIGNUM could cause the application to crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-2182"
},
{
"category": "external",
"summary": "RHBZ#1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-2182",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2182"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()"
},
{
"cve": "CVE-2016-6302",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-08-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369855"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow flaw leading to a buffer over-read was found in the way OpenSSL parsed TLS session tickets. A remote attacker could use this flaw to crash a TLS server using OpenSSL if it used SHA-512 as HMAC for session tickets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Insufficient TLS session ticket HMAC length checks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6302"
},
{
"category": "external",
"summary": "RHBZ#1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6302",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6302"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Insufficient TLS session ticket HMAC length checks"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Shi Lei"
],
"organization": "Gear Team of Qihoo 360 Inc.",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-6306",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1377594"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read flaws were found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use these flaws to crash a TLS/SSL server or client using OpenSSL.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: certificate message OOB reads",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6306"
},
{
"category": "external",
"summary": "RHBZ#1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6306",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 1.2,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: certificate message OOB reads"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
}
],
"cve": "CVE-2016-7055",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2016-10-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1393929"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker\u0027s direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Carry propagating bug in Montgomery multiplication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7055"
},
{
"category": "external",
"summary": "RHBZ#1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7055",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20161110.txt",
"url": "https://www.openssl.org/news/secadv/20161110.txt"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2016-10-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: Carry propagating bug in Montgomery multiplication"
},
{
"cve": "CVE-2017-3731",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416852"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow leading to an out of bounds read flaw was found in OpenSSL. A remote attacker could possibly use this flaw to crash a 32-bit TLS/SSL server or client using OpenSSL if it used the RC4-MD5 cipher suite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Truncated packet could crash via OOB read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3731"
},
{
"category": "external",
"summary": "RHBZ#1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Truncated packet could crash via OOB read"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2017-3737",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523504"
}
],
"notes": [
{
"category": "description",
"text": "OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an \"error state\" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Read/write after SSL object in error state",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3737"
},
{
"category": "external",
"summary": "RHBZ#1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Read/write after SSL object in error state"
},
{
"cve": "CVE-2017-3738",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523510"
}
],
"notes": [
{
"category": "description",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Text-Only JBCS"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "RHBZ#1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3738",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:04:49+00:00",
"details": "The References section of this erratum contains a download link (you must log in to download the update). Before applying the update, back up your existing Red Hat JBoss Web Server installation (including all applications and configuration files).\n\nAfter installing the updated packages, the httpd daemon will be restarted\nautomatically.",
"product_ids": [
"Text-Only JBCS"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2187"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Text-Only JBCS"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64"
}
]
}
RHSA-2018:2186
Vulnerability from csaf_redhat
Published
2018-07-12 16:14
Modified
2025-01-09 05:42
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 6 security update
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this release as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.29 packages that are part
of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services
Apache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,
enhancements and component upgrades included in this release.
This release upgrades OpenSSL to version 1.0.2.n
Security Fix(es):
* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)
* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)
* openssl: certificate message OOB reads (CVE-2016-6306)
* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)
* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-6306
and CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this release as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release adds the new Apache HTTP Server 2.4.29 packages that are part\nof the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services\nApache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes,\nenhancements and component upgrades included in this release.\n\nThis release upgrades OpenSSL to version 1.0.2.n\n\nSecurity Fix(es):\n\n* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)\n\n* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)\n\n* openssl: certificate message OOB reads (CVE-2016-6306)\n\n* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)\n\n* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* openssl: Read/write after SSL object in error state (CVE-2017-3737)\n\n* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-6306 \nand CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360 Inc.) as the original reporter of CVE-2016-6306.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2186",
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_core_services/2.4.29/"
},
{
"category": "external",
"summary": "1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "JBCS-372",
"url": "https://issues.redhat.com/browse/JBCS-372"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2186.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 RHEL 6 security update",
"tracking": {
"current_release_date": "2025-01-09T05:42:17+00:00",
"generator": {
"date": "2025-01-09T05:42:17+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2186",
"initial_release_date": "2018-07-12T16:14:52+00:00",
"revision_history": [
{
"date": "2018-07-12T16:14:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-07-12T16:14:52+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:42:17+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Core Services on RHEL 6 Server",
"product": {
"name": "Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Core Services"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt-debuginfo@2.4.1-19.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx-debuginfo@0.9.6-17.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb-debuginfo@5.4-36.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.8-1.Final_redhat_2.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.43-1.redhat_1.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.43-1.redhat_1.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.43-1.redhat_1.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-14.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-14.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-9.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.0.2n-11.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.29.0-8.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.29.0-8.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.1-23.GA.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.29-17.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.29-17.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.29-17.jbcs.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo@1.1.0-1.redhat_2.jbcs.el6?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt-debuginfo@2.4.1-19.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx-debuginfo@0.9.6-17.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb-debuginfo@5.4-36.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.8-1.Final_redhat_2.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.43-1.redhat_1.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.43-1.redhat_1.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.43-1.redhat_1.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-debuginfo@1.6.3-14.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-devel@1.6.3-14.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-openssl@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-nss@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-ldap@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-sqlite@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-devel@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-odbc@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-debuginfo@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-mysql@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util-pgsql@1.6.1-9.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"product_id": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.0.2n-11.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.29.0-8.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"product_id": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.29.0-8.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.1-23.GA.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.29-17.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.29-17.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"product_id": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.29-17.jbcs.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el6?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo@1.1.0-1.redhat_2.jbcs.el6?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_rt@2.4.1-19.GA.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_bmx@0.9.6-17.GA.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_auth_kerb@5.4-36.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.8-1.Final_redhat_2.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.43-1.redhat_1.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"product_id": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-14.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"product_id": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-9.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"product_id": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.0.2n-11.jbcs.el6?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"product_id": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.29.0-8.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"product_id": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.1-23.GA.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"product_id": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.29-17.jbcs.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon-jsvc@1.1.0-1.redhat_2.jbcs.el6?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"product": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"product_id": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.29-17.jbcs.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"product": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"product_id": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-apache-commons-daemon@1.1.0-1.redhat_2.1.jbcs.el6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch"
},
"product_reference": "jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686"
},
"product_reference": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"relates_to_product_reference": "6Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64 as a component of Red Hat JBoss Core Services on RHEL 6 Server",
"product_id": "6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64",
"relates_to_product_reference": "6Server-JBCS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-2182",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2016-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1367340"
}
],
"notes": [
{
"category": "description",
"text": "An out of bounds write flaw was discovered in the OpenSSL BN_bn2dec() function. An attacker able to make an application using OpenSSL to process a large BIGNUM could cause the application to crash or, possibly, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-2182"
},
{
"category": "external",
"summary": "RHBZ#1367340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1367340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-2182",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2182"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2182"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()"
},
{
"cve": "CVE-2016-4975",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2016-09-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1375968"
}
],
"notes": [
{
"category": "description",
"text": "It was found that Apache was vulnerable to a HTTP response splitting attack for sites which use mod_userdir. An attacker could use this flaw to inject CRLF characters into the HTTP header and could possibly gain access to secure data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-4975"
},
{
"category": "external",
"summary": "RHBZ#1375968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1375968"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-4975",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_22.html#CVE-2016-4975"
},
{
"category": "external",
"summary": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-4975"
}
],
"release_date": "2018-08-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "httpd: CRLF injection allowing HTTP response splitting attacks for sites which use mod_userdir"
},
{
"cve": "CVE-2016-6302",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-08-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1369855"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow flaw leading to a buffer over-read was found in the way OpenSSL parsed TLS session tickets. A remote attacker could use this flaw to crash a TLS server using OpenSSL if it used SHA-512 as HMAC for session tickets.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Insufficient TLS session ticket HMAC length checks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6302"
},
{
"category": "external",
"summary": "RHBZ#1369855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1369855"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6302",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6302"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6302"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-08-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Insufficient TLS session ticket HMAC length checks"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Shi Lei"
],
"organization": "Gear Team of Qihoo 360 Inc.",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-6306",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2016-09-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1377594"
}
],
"notes": [
{
"category": "description",
"text": "Multiple out of bounds read flaws were found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use these flaws to crash a TLS/SSL server or client using OpenSSL.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: certificate message OOB reads",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-6306"
},
{
"category": "external",
"summary": "RHBZ#1377594",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377594"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-6306",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6306"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6306"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20160922.txt",
"url": "https://www.openssl.org/news/secadv/20160922.txt"
}
],
"release_date": "2016-09-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 1.2,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: certificate message OOB reads"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
}
],
"cve": "CVE-2016-7055",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2016-10-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1393929"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bits. Analysis suggests that attacks against RSA, DSA and DH private keys are impossible. This is because the subroutine in question is not used in operations with the private key itself and an input of the attacker\u0027s direct choice. Otherwise the bug can manifest itself as transient authentication and key negotiation failures or reproducible erroneous outcome of public-key operations with specially crafted input. Among EC algorithms only Brainpool P-512 curves are affected and one presumably can attack ECDH key negotiation. Impact was not analyzed in detail, because pre-requisites for attack are considered unlikely. Namely multiple clients have to choose the curve in question and the server has to share the private key among them, neither of which is default behaviour. Even then only clients that chose the curve will be affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Carry propagating bug in Montgomery multiplication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-7055"
},
{
"category": "external",
"summary": "RHBZ#1393929",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393929"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-7055",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-7055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7055"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20161110.txt",
"url": "https://www.openssl.org/news/secadv/20161110.txt"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2016-10-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: Carry propagating bug in Montgomery multiplication"
},
{
"cve": "CVE-2017-3731",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416852"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow leading to an out of bounds read flaw was found in OpenSSL. A remote attacker could possibly use this flaw to crash a 32-bit TLS/SSL server or client using OpenSSL if it used the RC4-MD5 cipher suite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Truncated packet could crash via OOB read",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3731"
},
{
"category": "external",
"summary": "RHBZ#1416852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416852"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3731",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3731"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3731"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Truncated packet could crash via OOB read"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2017-3737",
"cwe": {
"id": "CWE-391",
"name": "Unchecked Error Condition"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523504"
}
],
"notes": [
{
"category": "description",
"text": "OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an \"error state\" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the explicit handshake functions (SSL_do_handshake(), SSL_accept() and SSL_connect()), however due to a bug it does not work correctly if SSL_read() or SSL_write() is called directly. In that scenario, if the handshake fails then a fatal error will be returned in the initial function call. If SSL_read()/SSL_write() is subsequently called by the application for the same SSL object then it will succeed and the data is passed without being decrypted/encrypted directly from the SSL/TLS record layer. In order to exploit this issue an application bug would have to be present that resulted in a call to SSL_read()/SSL_write() being issued after having already received a fatal error. OpenSSL version 1.0.2b-1.0.2m are affected. Fixed in OpenSSL 1.0.2n. OpenSSL 1.1.0 is not affected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: Read/write after SSL object in error state",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3737"
},
{
"category": "external",
"summary": "RHBZ#1523504",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523504"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3737",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3737"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: Read/write after SSL object in error state"
},
{
"cve": "CVE-2017-3738",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2017-12-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1523510"
}
],
"notes": [
{
"category": "description",
"text": "There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH1024 are considered just feasible, because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be significant. However, for an attack on TLS to be meaningful, the server would have to share the DH1024 private key among multiple clients, which is no longer an option since CVE-2016-0701. This only affects processors that support the AVX2 but not ADX extensions like Intel Haswell (4th generation). Note: The impact from this issue is similar to CVE-2017-3736, CVE-2017-3732 and CVE-2015-3193. OpenSSL version 1.0.2-1.0.2m and 1.1.0-1.1.0g are affected. Fixed in OpenSSL 1.0.2n. Due to the low severity of this issue we are not issuing a new release of OpenSSL 1.1.0 at this time. The fix will be included in OpenSSL 1.1.0h when it becomes available. The fix is also available in commit e502cc86d in the OpenSSL git repository.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3738"
},
{
"category": "external",
"summary": "RHBZ#1523510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1523510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3738",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3738"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171207.txt",
"url": "https://www.openssl.org/news/secadv/20171207.txt"
}
],
"release_date": "2017-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-07-12T16:14:52+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-0:1.1.0-1.redhat_2.1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apache-commons-daemon-jsvc-debuginfo-1:1.1.0-1.redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-debuginfo-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-devel-0:1.6.3-14.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-apr-util-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-debuginfo-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-devel-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-ldap-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-mysql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-nss-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-odbc-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-openssl-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-pgsql-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-apr-util-sqlite-0:1.6.1-9.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-httpd-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.29-17.jbcs.el6.noarch",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_auth_kerb-debuginfo-0:5.4-36.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_bmx-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_bmx-debuginfo-0:0.9.6-17.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.8-1.Final_redhat_2.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.43-1.redhat_1.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.43-1.redhat_1.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_rt-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_rt-debuginfo-0:2.4.1-19.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-mod_security-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.1-23.GA.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_session-0:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.29-17.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-nghttp2-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.29.0-8.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.src",
"6Server-JBCS:jbcs-httpd24-openssl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-devel-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-libs-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-perl-1:1.0.2n-11.jbcs.el6.x86_64",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.i686",
"6Server-JBCS:jbcs-httpd24-openssl-static-1:1.0.2n-11.jbcs.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "openssl: rsaz_1024_mul_avx2 overflow bug on x86_64"
}
]
}
RHSA-2018:2713
Vulnerability from csaf_redhat
Published
2018-09-17 14:54
Modified
2025-01-09 05:43
Summary
Red Hat Security Advisory: java-1.8.0-ibm security update
Notes
Topic
An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.
This update upgrades IBM Java SE 8 to version 8 SR5-FP20.
Security Fix(es):
* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* IBM JDK: DoS in the java.math component (CVE-2018-1517)
* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)
* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)
* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)
* OpenSSL: Double-free in DSA code (CVE-2016-0705)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.\n\nThis update upgrades IBM Java SE 8 to version 8 SR5-FP20.\n\nSecurity Fix(es):\n\n* IBM JDK: privilege escalation via insufficiently restricted access to Attach API (CVE-2018-12539)\n\n* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)\n\n* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)\n\n* IBM JDK: DoS in the java.math component (CVE-2018-1517)\n\n* IBM JDK: path traversal flaw in the Diagnostic Tooling Framework (CVE-2018-1656)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries) (CVE-2018-2940)\n\n* OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547) (CVE-2018-2952)\n\n* Oracle JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE) (CVE-2018-2973)\n\n* OpenSSL: Double-free in DSA code (CVE-2016-0705)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the OpenSSL project for reporting CVE-2016-0705. Upstream acknowledges Adam Langley (Google/BoringSSL) as the original reporter of CVE-2016-0705.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:2713",
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2713.json"
}
],
"title": "Red Hat Security Advisory: java-1.8.0-ibm security update",
"tracking": {
"current_release_date": "2025-01-09T05:43:09+00:00",
"generator": {
"date": "2025-01-09T05:43:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2018:2713",
"initial_release_date": "2018-09-17T14:54:13+00:00",
"revision_history": [
{
"date": "2018-09-17T14:54:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-09-17T14:54:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-09T05:43:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm-devel@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_id": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.8.0-ibm@1.8.0.5.20-1jpp.1.el6_10?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64 as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
},
"product_reference": "java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"relates_to_product_reference": "6Server-Satellite58"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Adam Langley"
],
"organization": "Google/BoringSSL",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2016-0705",
"discovery_date": "2016-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1310596"
}
],
"notes": [
{
"category": "description",
"text": "A double-free flaw was found in the way OpenSSL parsed certain malformed DSA (Digital Signature Algorithm) private keys. An attacker could create specially crafted DSA private keys that, when processed by an application compiled against OpenSSL, could cause the application to crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenSSL: Double-free in DSA code",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-0705"
},
{
"category": "external",
"summary": "RHBZ#1310596",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1310596"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-0705",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0705"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0705"
}
],
"release_date": "2016-02-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenSSL: Double-free in DSA code"
},
{
"cve": "CVE-2017-3732",
"discovery_date": "2017-01-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1416856"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. For example this can occur by default in OpenSSL DHE based SSL/TLS ciphersuites. Note: This issue is very similar to CVE-2015-3193 but must be treated as a separate problem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: BN_mod_exp may produce incorrect results on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3732"
},
{
"category": "external",
"summary": "RHBZ#1416856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1416856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3732",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3732"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20170126.txt",
"url": "https://www.openssl.org/news/secadv/20170126.txt"
}
],
"release_date": "2017-01-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: BN_mod_exp may produce incorrect results on x86_64"
},
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"discovery_date": "2017-11-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1509169"
}
],
"notes": [
{
"category": "description",
"text": "There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attacks against DH are considered just feasible (although very difficult) because most of the work necessary to deduce information about a private key may be performed offline. The amount of resources required for such an attack would be very significant and likely only accessible to a limited number of attackers. An attacker would additionally need online access to an unpatched system using the target private key in a scenario with persistent DH parameters and a private key that is shared between multiple clients. This only affects processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: bn_sqrx8x_internal carry bug on x86_64",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-3736"
},
{
"category": "external",
"summary": "RHBZ#1509169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-3736",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3736"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3736"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20171102.txt",
"url": "https://www.openssl.org/news/secadv/20171102.txt"
}
],
"release_date": "2017-11-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "openssl: bn_sqrx8x_internal carry bug on x86_64"
},
{
"cve": "CVE-2018-1517",
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618871"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in the java.math component in IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 may allow an attacker to inflict a denial-of-service attack with specially crafted String data. IBM X-Force ID: 141681.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: DoS in the java.math component",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1517"
},
{
"category": "external",
"summary": "RHBZ#1618871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618871"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1517",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1517"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1517"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: DoS in the java.math component"
},
{
"cve": "CVE-2018-1656",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618869"
}
],
"notes": [
{
"category": "description",
"text": "The IBM Java Runtime Environment\u0027s Diagnostic Tooling Framework for Java (DTFJ) (IBM SDK, Java Technology Edition 6.0 , 7.0, and 8.0) does not protect against path traversal attacks when extracting compressed dump files. IBM X-Force ID: 144882.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: path traversal flaw in the Diagnostic Tooling Framework",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-1656"
},
{
"category": "external",
"summary": "RHBZ#1618869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618869"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-1656",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1656"
}
],
"release_date": "2018-08-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: path traversal flaw in the Diagnostic Tooling Framework"
},
{
"cve": "CVE-2018-2940",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602146"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2940"
},
{
"category": "external",
"summary": "RHBZ#1602146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2940",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2940"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (Libraries)"
},
{
"cve": "CVE-2018-2952",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2018-07-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1600925"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171; JRockit: R28.3.18. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2952"
},
{
"category": "external",
"summary": "RHBZ#1600925",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1600925"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2952",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2952"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2952"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: insufficient index validation in PatternSyntaxException getMessage() (Concurrency, 8199547)"
},
{
"cve": "CVE-2018-2973",
"discovery_date": "2018-07-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1602145"
}
],
"notes": [
{
"category": "description",
"text": "Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JSSE). Supported versions that are affected are Java SE: 6u191, 7u181, 8u172 and 10.0.1; Java SE Embedded: 8u171. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSL/TLS to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.0 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-2973"
},
{
"category": "external",
"summary": "RHBZ#1602145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-2973",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-2973"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-2973"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html#AppendixJAVA"
}
],
"release_date": "2018-07-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 6u201, 7u191, 8u181, and 10.0.2 (JSSE)"
},
{
"cve": "CVE-2018-12539",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-08-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618767"
}
],
"notes": [
{
"category": "description",
"text": "In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on Windows, Linux and AIX JVMs and can be disabled using the command line option -Dcom.ibm.tools.attach.enable=no.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: privilege escalation via insufficiently restricted access to Attach API",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-12539"
},
{
"category": "external",
"summary": "RHBZ#1618767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-12539",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12539"
}
],
"release_date": "2018-05-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-09-17T14:54:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\"). All running instances of IBM Java must be restarted for this update to take effect.",
"product_ids": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:2713"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-1:1.8.0.5.20-1jpp.1.el6_10.x86_64",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.s390x",
"6Server-Satellite58:java-1.8.0-ibm-devel-1:1.8.0.5.20-1jpp.1.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: privilege escalation via insufficiently restricted access to Attach API"
}
]
}
rhsa-2018_2187
Vulnerability from csaf_redhat
Published
2018-07-12 16:04
Modified
2024-11-22 11:16
Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 security update
Notes
Topic
Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available.
Red Hat Product Security has rated this release as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release adds the new Apache HTTP Server 2.4.29 packages that are part
of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services
Apache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer
to the Release Notes for information on the most significant bug fixes,
enhancements and component upgrades included in this release.
This release upgrades OpenSSL to version 1.0.2.n
Security Fix(es):
* openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() (CVE-2016-2182)
* openssl: Insufficient TLS session ticket HMAC length checks (CVE-2016-6302)
* openssl: certificate message OOB reads (CVE-2016-6306)
* openssl: Carry propagating bug in Montgomery multiplication (CVE-2016-7055)
* openssl: Truncated packet could crash via OOB read (CVE-2017-3731)
* openssl: BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
* openssl: bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736)
* openssl: Read/write after SSL object in error state (CVE-2017-3737)
* openssl: rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738)
Red Hat would like to thank the OpenSSL project for reporting CVE-2016-6306
and CVE-2016-7055. Upstream acknowledges Shi Lei (Gear Team of Qihoo 360
Inc.) as the original reporter of CVE-2016-6306.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Core Services Pack Apache Server 2.4.29 packages are now available.\n\nRed Hat Product Security has rated this release as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release adds the new Apache HTTP Server 2.4.29 packages that are part\nof the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services\nApache HTTP Server 2.4.23, and includes bug fixes and enhancements. Refer\nto the Release