Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2017-15089
Vulnerability from cvelistv5
Published
2018-02-15 17:00
Modified
2024-09-16 19:05
Severity ?
EPSS score ?
Summary
It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Infinispan | infinispan |
Version: before 9.2.0.CR1 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T19:50:14.965Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "1040360", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1040360", }, { name: "RHSA-2018:0479", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { name: "RHSA-2018:0481", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://github.com/infinispan/infinispan/pull/5639", }, { name: "RHSA-2018:0294", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { name: "RHSA-2018:0501", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { name: "RHSA-2018:0480", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { name: "RHSA-2018:0478", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { name: "RHSA-2019:1326", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2019:1326", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "infinispan", vendor: "Infinispan", versions: [ { status: "affected", version: "before 9.2.0.CR1", }, ], }, ], datePublic: "2018-02-12T00:00:00", descriptions: [ { lang: "en", value: "It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-502", description: "CWE-502", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2019-06-04T16:06:03", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "1040360", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1040360", }, { name: "RHSA-2018:0479", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { name: "RHSA-2018:0481", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://github.com/infinispan/infinispan/pull/5639", }, { name: "RHSA-2018:0294", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { name: "RHSA-2018:0501", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { name: "RHSA-2018:0480", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { name: "RHSA-2018:0478", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { name: "RHSA-2019:1326", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2019:1326", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secalert@redhat.com", DATE_PUBLIC: "2018-02-12T00:00:00", ID: "CVE-2017-15089", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "infinispan", version: { version_data: [ { version_value: "before 9.2.0.CR1", }, ], }, }, ], }, vendor_name: "Infinispan", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-502", }, ], }, ], }, references: { reference_data: [ { name: "1040360", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1040360", }, { name: "RHSA-2018:0479", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { name: "RHSA-2018:0481", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { name: "https://github.com/infinispan/infinispan/pull/5639", refsource: "CONFIRM", url: "https://github.com/infinispan/infinispan/pull/5639", }, { name: "RHSA-2018:0294", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { name: "RHSA-2018:0501", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { name: "RHSA-2018:0480", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { name: "RHSA-2018:0478", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { name: "RHSA-2019:1326", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2019:1326", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2017-15089", datePublished: "2018-02-15T17:00:00Z", dateReserved: "2017-10-08T00:00:00", dateUpdated: "2024-09-16T19:05:25.998Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { nvd: "{\"cve\":{\"id\":\"CVE-2017-15089\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-02-15T17:29:00.207\",\"lastModified\":\"2024-11-21T03:14:02.923\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.\"},{\"lang\":\"es\",\"value\":\"Se ha descubierto que el cliente Hotrod en Infinispan, en versiones anteriores a la 9.2.0.CR1 lee de forma insegura los datos deserializados en la información de la caché. Un atacante autenticado podría inyectar un objeto malicioso en la caché de datos y lograr la deserialización en el cliente, además de llevar a cabo ataques a mayores.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:P/I:P/A:P\",\"baseScore\":6.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-502\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-502\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:infinispan:infinispan:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"9.1.6\",\"matchCriteriaId\":\"73C3E6FB-4EE2-4538-A190-3F680D9E7A3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:infinispan:infinispan:9.2.0:alpha1:*:*:*:*:*:*\",\"matchCriteriaId\":\"6A2B14A3-8FAE-4C32-9E1A-F32D49E1EFAE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:infinispan:infinispan:9.2.0:alpha2:*:*:*:*:*:*\",\"matchCriteriaId\":\"35E90E01-47E7-44CB-A617-385AB0E6CB9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:infinispan:infinispan:9.2.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC00B1CC-C522-44FC-AB04-973D0E75C4E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:infinispan:infinispan:9.2.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7248C01A-3848-4E22-AC9D-9D0E9D31EE80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:infinispan:infinispan:9.2.0:cr1:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FDEC571-F826-4993-ABE3-3E94ECA684C5\"}]}]}],\"references\":[{\"url\":\"http://www.securitytracker.com/id/1040360\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0294\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0478\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0479\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0480\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0481\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0501\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:1326\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://github.com/infinispan/infinispan/pull/5639\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.securitytracker.com/id/1040360\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0294\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0478\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0479\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0480\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0481\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0501\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:1326\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/infinispan/infinispan/pull/5639\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]}]}}", }, }
gsd-2017-15089
Vulnerability from gsd
Modified
2023-12-13 01:20
Details
It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.
Aliases
Aliases
{ GSD: { alias: "CVE-2017-15089", description: "It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", id: "GSD-2017-15089", references: [ "https://access.redhat.com/errata/RHSA-2020:2561", "https://access.redhat.com/errata/RHSA-2019:1326", "https://access.redhat.com/errata/RHSA-2018:0501", "https://access.redhat.com/errata/RHSA-2018:0481", "https://access.redhat.com/errata/RHSA-2018:0480", "https://access.redhat.com/errata/RHSA-2018:0479", "https://access.redhat.com/errata/RHSA-2018:0478", "https://access.redhat.com/errata/RHSA-2018:0294", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2017-15089", ], details: "It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", id: "GSD-2017-15089", modified: "2023-12-13T01:20:58.507661Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "secalert@redhat.com", DATE_PUBLIC: "2018-02-12T00:00:00", ID: "CVE-2017-15089", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "infinispan", version: { version_data: [ { version_value: "before 9.2.0.CR1", }, ], }, }, ], }, vendor_name: "Infinispan", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-502", }, ], }, ], }, references: { reference_data: [ { name: "1040360", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1040360", }, { name: "RHSA-2018:0479", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { name: "RHSA-2018:0481", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { name: "https://github.com/infinispan/infinispan/pull/5639", refsource: "CONFIRM", url: "https://github.com/infinispan/infinispan/pull/5639", }, { name: "RHSA-2018:0294", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { name: "RHSA-2018:0501", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { name: "RHSA-2018:0480", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { name: "RHSA-2018:0478", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { name: "RHSA-2019:1326", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2019:1326", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "(,9.2.0.Beta2]", affected_versions: "All versions up to 9.2.0.beta2", cvss_v2: "AV:N/AC:L/Au:S/C:P/I:P/A:P", cvss_v3: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-502", "CWE-937", ], date: "2022-08-16", description: "It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", fixed_versions: [ "9.2.0.CR1", ], identifier: "CVE-2017-15089", identifiers: [ "GHSA-46r5-59fg-2fjc", "CVE-2017-15089", ], not_impacted: "All versions after 9.2.0.beta2", package_slug: "maven/org.infinispan/infinispan-core", pubdate: "2022-05-14", solution: "Upgrade to version 9.2.0.CR1 or above.", title: "Deserialization of Untrusted Data", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", "https://github.com/infinispan/infinispan/pull/5639", "https://access.redhat.com/errata/RHSA-2018:0294", "https://access.redhat.com/errata/RHSA-2018:0478", "https://access.redhat.com/errata/RHSA-2018:0479", "https://access.redhat.com/errata/RHSA-2018:0480", "https://access.redhat.com/errata/RHSA-2018:0481", "https://access.redhat.com/errata/RHSA-2018:0501", "https://access.redhat.com/errata/RHSA-2019:1326", "https://github.com/advisories/GHSA-46r5-59fg-2fjc", ], uuid: "bbc33908-62f2-41b6-9397-de28990fad68", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:infinispan:infinispan:9.2.0:cr1:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:infinispan:infinispan:9.2.0:beta2:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:infinispan:infinispan:9.2.0:alpha1:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:infinispan:infinispan:*:*:*:*:*:*:*:*", cpe_name: [], versionEndIncluding: "9.1.6", vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:infinispan:infinispan:9.2.0:beta1:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:infinispan:infinispan:9.2.0:alpha2:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "secalert@redhat.com", ID: "CVE-2017-15089", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-502", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/infinispan/infinispan/pull/5639", refsource: "CONFIRM", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/infinispan/infinispan/pull/5639", }, { name: "RHSA-2018:0294", refsource: "REDHAT", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { name: "1040360", refsource: "SECTRACK", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securitytracker.com/id/1040360", }, { name: "RHSA-2018:0481", refsource: "REDHAT", tags: [], url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { name: "RHSA-2018:0480", refsource: "REDHAT", tags: [], url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { name: "RHSA-2018:0479", refsource: "REDHAT", tags: [], url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { name: "RHSA-2018:0478", refsource: "REDHAT", tags: [], url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { name: "RHSA-2018:0501", refsource: "REDHAT", tags: [], url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { name: "RHSA-2019:1326", refsource: "REDHAT", tags: [], url: "https://access.redhat.com/errata/RHSA-2019:1326", }, ], }, }, impact: { baseMetricV2: { cvssV2: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "PARTIAL", baseScore: 6.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:S/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 8, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", userInteractionRequired: false, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 2.8, impactScore: 5.9, }, }, lastModifiedDate: "2019-06-04T17:29Z", publishedDate: "2018-02-15T17:29Z", }, }, }
rhsa-2020_2561
Vulnerability from csaf_redhat
Published
2020-06-15 16:08
Modified
2024-12-22 18:33
Summary
Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 12 security update
Notes
Topic
This is a security update for JBoss EAP Continuous Delivery 12.0.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform CD12 is a platform for Java applications based on the WildFly application runtime.
This release of Red Hat JBoss Enterprise Application Platform CD12 includes bug fixes and enhancements.
Security Fix(es):
* artemis: artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* lucene: Solr: Code execution via entity expansion (CVE-2017-12629)
* infinispan-core: infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution (CVE-2018-8088)
* elytron: client can use bogus uri in digest authentication (CVE-2017-12196)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "This is a security update for JBoss EAP Continuous Delivery 12.0.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform CD12 is a platform for Java applications based on the WildFly application runtime.\n\nThis release of Red Hat JBoss Enterprise Application Platform CD12 includes bug fixes and enhancements. \n\nSecurity Fix(es):\n\n* artemis: artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n* lucene: Solr: Code execution via entity expansion (CVE-2017-12629)\n* infinispan-core: infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n* slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution (CVE-2018-8088)\n* elytron: client can use bogus uri in digest authentication (CVE-2017-12196)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:2561", url: "https://access.redhat.com/errata/RHSA-2020:2561", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1501529", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1501529", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1548909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1548909", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2561.json", }, ], title: "Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 12 security update", tracking: { current_release_date: "2024-12-22T18:33:39+00:00", generator: { date: "2024-12-22T18:33:39+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.4", }, }, id: "RHSA-2020:2561", initial_release_date: "2020-06-15T16:08:52+00:00", revision_history: [ { date: "2020-06-15T16:08:52+00:00", number: "1", summary: "Initial version", }, { date: "2020-06-15T16:08:52+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-22T18:33:39+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform Continuous Delivery", product: { name: "Red Hat JBoss Enterprise Application Platform Continuous Delivery", product_id: "Red Hat JBoss Enterprise Application Platform Continuous Delivery", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform_cd:12", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { cve: "CVE-2017-12629", cwe: { id: "CWE-138", name: "Improper Neutralization of Special Elements", }, discovery_date: "2017-10-12T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1501529", }, ], notes: [ { category: "description", text: "It was found that Apache Lucene would accept an object from an unauthenticated user that could be manipulated through subsequent post requests. An attacker could use this flaw to assemble an object that could permit execution of arbitrary code if the server enabled Apache Solr's Config API.", title: "Vulnerability description", }, { category: "summary", text: "Solr: Code execution via entity expansion", title: "Vulnerability summary", }, { category: "other", text: "The following products are not affected by this flaw, as they do not use the vulnerable functionality of either aspect of the issue.\nRed Hat JBoss Enterprise Application Platform 6\nRed Hat JBoss BPM Suite\nRed Hat JBoss BRMS\nRed Hat Enterprise Virtualization Manager\nRed Hat Single Sign-On 7\nRed Hat JBoss Portal Platform 6\n\nRed Hat JBoss Enterprise Application Platform 7 is not affected by this flaw. However, it does ship the vulnerable Lucene class in a dependency to another component. Customers who reuse the lucene-queryparser jar in their applications may be vulnerable to the External Entity Expansion aspect of this flaw. This will be patched in a forthcoming release.\n\nRed Hat JBoss Fuse is not affected by this flaw, as it does not use the vulnerable functionality of either aspect of this flaw. Fuse customers who may be running external Solr servers, while not affected from the Fuse side, are advised to secure their Solr servers as recommended in the mitigation provided.\n\nThe following products ship only the Lucene components relevant to this flaw, and are not vulnerable to the second portion of the vulnerability, the code execution exploit. As such, the impact of this flaw has been determined to be Moderate for these respective products:\nRed Hat JBoss Data Grid 7 \nRed Hat Enterprise Linux 6\nRed Hat Software Collections 2.4\n\nThis issue did not affect the versions of lucene as shipped with Red Hat Enterprise Linux 5.\n\nThis issue does not affect Elasticsearch as shipped in OpenShift Container Platform.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12629", }, { category: "external", summary: "RHBZ#1501529", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1501529", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12629", url: "https://www.cve.org/CVERecord?id=CVE-2017-12629", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12629", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12629", }, { category: "external", summary: "https://access.redhat.com/security/vulnerabilities/CVE-2017-12629", url: "https://access.redhat.com/security/vulnerabilities/CVE-2017-12629", }, ], release_date: "2017-10-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, { category: "workaround", details: "Until fixes are available, all Solr users are advised to restart their Solr instances with the system parameter `-Ddisable.configEdit=true`. This will disallow any changes to be made to configurations via the Config API. This is a key factor in this vulnerability, since it allows GET requests to add the RunExecutableListener to the config.\n\nThis is sufficient to protect from this type of attack, but means you cannot use the edit capabilities of the Config API until further fixes are in place.", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], scores: [ { cvss_v2: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 10, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "Solr: Code execution via entity expansion", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Chris McCown", ], }, ], cve: "CVE-2018-8088", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-02-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1548909", }, ], notes: [ { category: "description", text: "An XML deserialization vulnerability was discovered in slf4j's EventData, which accepts an XML serialized string and can lead to arbitrary code execution.", title: "Vulnerability description", }, { category: "summary", text: "slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution", title: "Vulnerability summary", }, { category: "other", text: "Subscription Asset Manager is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having a security impact of Important, and is not currently planned to be addressed in future updates.\n\nThis issue did not affect the versions of Candlepin as shipped with Red Hat Satellite 6 as Candlepin uses slf4j-api and not the affected slf4j-ext (which is not on the Candlepin classpath).\n\nRed Hat Enterprise Virtualization Manager 4.1 is affected by this issue. Updated packages that address this issue are available through the Red Hat Enterprise Linux Server channels. Virtualization Manager hosts should be subscribed to these channels and obtain the updates via `yum update`.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-8088", }, { category: "external", summary: "RHBZ#1548909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1548909", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-8088", url: "https://www.cve.org/CVERecord?id=CVE-2018-8088", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-8088", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-8088", }, ], release_date: "2018-02-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution", }, ], }
rhsa-2019:1326
Vulnerability from csaf_redhat
Published
2019-06-04 14:33
Modified
2024-11-22 10:33
Summary
Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R12 security and bug fix update
Notes
Topic
An update is now available for Red Hat JBoss Fuse 6.3 and Red Hat JBoss A-MQ 6.3.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Fuse provides a small-footprint, flexible, open source enterprise service bus and integration platform. Red Hat A-MQ is a standards compliant messaging system that is tailored for use in mission critical applications.
This patch is an update to Red Hat Fuse 6.3 and Red Hat A-MQ 6.3. It includes bug fixes, which are documented in the patch notes accompanying the package on the download page. See the download link given in the references section below.
Security fix(es):
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Fuse 6.3 and Red Hat JBoss A-MQ 6.3.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Fuse provides a small-footprint, flexible, open source enterprise service bus and integration platform. Red Hat A-MQ is a standards compliant messaging system that is tailored for use in mission critical applications.\n\nThis patch is an update to Red Hat Fuse 6.3 and Red Hat A-MQ 6.3. It includes bug fixes, which are documented in the patch notes accompanying the package on the download page. See the download link given in the references section below.\n\nSecurity fix(es):\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:1326", url: "https://access.redhat.com/errata/RHSA-2019:1326", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.amq.broker&downloadType=securityPatches&version=6.3.0", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.amq.broker&downloadType=securityPatches&version=6.3.0", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.fuse&downloadType=securityPatches&version=6.3", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.fuse&downloadType=securityPatches&version=6.3", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_1326.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R12 security and bug fix update", tracking: { current_release_date: "2024-11-22T10:33:24+00:00", generator: { date: "2024-11-22T10:33:24+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2019:1326", initial_release_date: "2019-06-04T14:33:05+00:00", revision_history: [ { date: "2019-06-04T14:33:05+00:00", number: "1", summary: "Initial version", }, { date: "2019-06-04T14:33:05+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T10:33:24+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Fuse 6.3", product: { name: "Red Hat Fuse 6.3", product_id: "Red Hat Fuse 6.3", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_amq:6.3", }, }, }, ], category: "product_family", name: "Red Hat JBoss Fuse", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Fuse 6.3", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-06-04T14:33:05+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nInstallation instructions are located in the download section of the customer portal.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Fuse 6.3", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:1326", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat Fuse 6.3", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, ], }
rhsa-2018:0294
Vulnerability from csaf_redhat
Published
2018-02-12 17:19
Modified
2025-04-09 16:40
Summary
Red Hat Security Advisory: Red Hat JBoss Data Grid 7.1.2 security update
Notes
Topic
Red Hat JBoss Data Grid 7.1.2 is now available for download from the Customer Portal.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Data Grid is a distributed in-memory data grid, based on Infinispan.
This release of Red Hat JBoss Data Grid 7.1.2 serves as a replacement for Red Hat JBoss Data Grid 7.1.1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. (CVE-2017-7525)
* It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks. (CVE-2017-15089)
* A vulnerability was found in Jasypt that would allow an attacker to perform a timing attack on password hash comparison. (CVE-2014-9970)
Red Hat would like to thank Liao Xinxi (NSFOCUS) for reporting CVE-2017-7525 and Man Yue Mo (Semmle/lgtm.com) for reporting CVE-2017-15089.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat JBoss Data Grid 7.1.2 is now available for download from the Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Data Grid is a distributed in-memory data grid, based on Infinispan.\n\nThis release of Red Hat JBoss Data Grid 7.1.2 serves as a replacement for Red Hat JBoss Data Grid 7.1.1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. (CVE-2017-7525)\n\n* It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks. (CVE-2017-15089)\n\n* A vulnerability was found in Jasypt that would allow an attacker to perform a timing attack on password hash comparison. (CVE-2014-9970)\n\nRed Hat would like to thank Liao Xinxi (NSFOCUS) for reporting CVE-2017-7525 and Man Yue Mo (Semmle/lgtm.com) for reporting CVE-2017-15089.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0294", url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=data.grid&downloadType=distributions&version=7.1.2", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=data.grid&downloadType=distributions&version=7.1.2", }, { category: "external", summary: "https://access.redhat.com/documentation/en-US/Red_Hat_JBoss_Data_Grid/", url: "https://access.redhat.com/documentation/en-US/Red_Hat_JBoss_Data_Grid/", }, { category: "external", summary: "1455566", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1455566", }, { category: "external", summary: "1462702", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1462702", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0294.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Data Grid 7.1.2 security update", tracking: { current_release_date: "2025-04-09T16:40:52+00:00", generator: { date: "2025-04-09T16:40:52+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2018:0294", initial_release_date: "2018-02-12T17:19:54+00:00", revision_history: [ { date: "2018-02-12T17:19:54+00:00", number: "1", summary: "Initial version", }, { date: "2018-02-12T17:19:54+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T16:40:52+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Data Grid 7.1", product: { name: "Red Hat JBoss Data Grid 7.1", product_id: "Red Hat JBoss Data Grid 7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_data_grid:7.1", }, }, }, ], category: "product_family", name: "Red Hat JBoss Data Grid", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2014-9970", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2017-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1455566", }, ], notes: [ { category: "description", text: "A vulnerability was found in Jasypt that would allow an attacker to perform a timing attack on password hash comparison.", title: "Vulnerability description", }, { category: "summary", text: "jasypt: Vulnerable to timing attack against the password hash comparison", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Data Grid 7.1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2014-9970", }, { category: "external", summary: "RHBZ#1455566", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1455566", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2014-9970", url: "https://www.cve.org/CVERecord?id=CVE-2014-9970", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2014-9970", url: "https://nvd.nist.gov/vuln/detail/CVE-2014-9970", }, ], release_date: "2017-02-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-02-12T17:19:54+00:00", details: "The References section of this erratum contains a download link (you must log in to download the update).\n\nBefore applying the update, back up your existing Red Hat JBoss Data Grid installation (including databases, configuration files, and so on).", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0294", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss Data Grid 7.1", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jasypt: Vulnerable to timing attack against the password hash comparison", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-7525", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-06-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1462702", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nAlthough JBoss Fuse ships the vulnerable version of jackson-databind, it does not call on enableDefaultTyping() for any polymorphic deserialization operations which is the root cause of this vulnerability. We have raised a Jira tracker to ensure that jackson-databind will be upgraded for Fuse 7.0, however due to feasibility issues jackson-databind cannot be upgraded in JBoss Fuse 6.3.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Data Grid 7.1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7525", }, { category: "external", summary: "RHBZ#1462702", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1462702", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7525", url: "https://www.cve.org/CVERecord?id=CVE-2017-7525", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7525", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7525", }, ], release_date: "2017-07-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-02-12T17:19:54+00:00", details: "The References section of this erratum contains a download link (you must log in to download the update).\n\nBefore applying the update, back up your existing Red Hat JBoss Data Grid installation (including databases, configuration files, and so on).", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Data Grid 7.1", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Data Grid 7.1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-02-12T17:19:54+00:00", details: "The References section of this erratum contains a download link (you must log in to download the update).\n\nBefore applying the update, back up your existing Red Hat JBoss Data Grid installation (including databases, configuration files, and so on).", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0294", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Data Grid 7.1", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, ], }
rhsa-2018:0478
Vulnerability from csaf_redhat
Published
2018-03-12 16:37
Modified
2025-04-09 17:23
Summary
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.1 security update
Notes
Topic
An update is now available for Red Hat JBoss Enterprise Application Platform.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.
This release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Enterprise Application Platform.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0478", url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform&downloadType=securityPatches&version=7.1", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform&downloadType=securityPatches&version=7.1", }, { category: "external", summary: "https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/version-7.1", url: "https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/version-7.1", }, { category: "external", summary: "https://access.redhat.com/documentation/en/jboss-enterprise-application-platform/", url: "https://access.redhat.com/documentation/en/jboss-enterprise-application-platform/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0478.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.1 security update", tracking: { current_release_date: "2025-04-09T17:23:22+00:00", generator: { date: "2025-04-09T17:23:22+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2018:0478", initial_release_date: "2018-03-12T16:37:39+00:00", revision_history: [ { date: "2018-03-12T16:37:39+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T16:37:39+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T17:23:22+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss EAP 7", product: { name: "Red Hat JBoss EAP 7", product_id: "Red Hat JBoss EAP 7", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "Red Hat JBoss EAP 7", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
RHSA-2018:0478
Vulnerability from csaf_redhat
Published
2018-03-12 16:37
Modified
2025-04-09 17:23
Summary
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.1 security update
Notes
Topic
An update is now available for Red Hat JBoss Enterprise Application Platform.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.
This release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Enterprise Application Platform.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0478", url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform&downloadType=securityPatches&version=7.1", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform&downloadType=securityPatches&version=7.1", }, { category: "external", summary: "https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/version-7.1", url: "https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/version-7.1", }, { category: "external", summary: "https://access.redhat.com/documentation/en/jboss-enterprise-application-platform/", url: "https://access.redhat.com/documentation/en/jboss-enterprise-application-platform/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0478.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.1 security update", tracking: { current_release_date: "2025-04-09T17:23:22+00:00", generator: { date: "2025-04-09T17:23:22+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2018:0478", initial_release_date: "2018-03-12T16:37:39+00:00", revision_history: [ { date: "2018-03-12T16:37:39+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T16:37:39+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T17:23:22+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss EAP 7", product: { name: "Red Hat JBoss EAP 7", product_id: "Red Hat JBoss EAP 7", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "Red Hat JBoss EAP 7", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
RHSA-2020:2561
Vulnerability from csaf_redhat
Published
2020-06-15 16:08
Modified
2025-04-09 16:44
Summary
Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 12 security update
Notes
Topic
This is a security update for JBoss EAP Continuous Delivery 12.0.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform CD12 is a platform for Java applications based on the WildFly application runtime.
This release of Red Hat JBoss Enterprise Application Platform CD12 includes bug fixes and enhancements.
Security Fix(es):
* artemis: artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* lucene: Solr: Code execution via entity expansion (CVE-2017-12629)
* infinispan-core: infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution (CVE-2018-8088)
* elytron: client can use bogus uri in digest authentication (CVE-2017-12196)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "This is a security update for JBoss EAP Continuous Delivery 12.0.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform CD12 is a platform for Java applications based on the WildFly application runtime.\n\nThis release of Red Hat JBoss Enterprise Application Platform CD12 includes bug fixes and enhancements. \n\nSecurity Fix(es):\n\n* artemis: artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n* lucene: Solr: Code execution via entity expansion (CVE-2017-12629)\n* infinispan-core: infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n* slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution (CVE-2018-8088)\n* elytron: client can use bogus uri in digest authentication (CVE-2017-12196)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:2561", url: "https://access.redhat.com/errata/RHSA-2020:2561", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1501529", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1501529", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1548909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1548909", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2561.json", }, ], title: "Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 12 security update", tracking: { current_release_date: "2025-04-09T16:44:27+00:00", generator: { date: "2025-04-09T16:44:27+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2020:2561", initial_release_date: "2020-06-15T16:08:52+00:00", revision_history: [ { date: "2020-06-15T16:08:52+00:00", number: "1", summary: "Initial version", }, { date: "2020-06-15T16:08:52+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T16:44:27+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform Continuous Delivery", product: { name: "Red Hat JBoss Enterprise Application Platform Continuous Delivery", product_id: "Red Hat JBoss Enterprise Application Platform Continuous Delivery", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform_cd:12", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { cve: "CVE-2017-12629", cwe: { id: "CWE-138", name: "Improper Neutralization of Special Elements", }, discovery_date: "2017-10-12T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1501529", }, ], notes: [ { category: "description", text: "It was found that Apache Lucene would accept an object from an unauthenticated user that could be manipulated through subsequent post requests. An attacker could use this flaw to assemble an object that could permit execution of arbitrary code if the server enabled Apache Solr's Config API.", title: "Vulnerability description", }, { category: "summary", text: "Solr: Code execution via entity expansion", title: "Vulnerability summary", }, { category: "other", text: "The following products are not affected by this flaw, as they do not use the vulnerable functionality of either aspect of the issue.\nRed Hat JBoss Enterprise Application Platform 6\nRed Hat JBoss BPM Suite\nRed Hat JBoss BRMS\nRed Hat Enterprise Virtualization Manager\nRed Hat Single Sign-On 7\nRed Hat JBoss Portal Platform 6\n\nRed Hat JBoss Enterprise Application Platform 7 is not affected by this flaw. However, it does ship the vulnerable Lucene class in a dependency to another component. Customers who reuse the lucene-queryparser jar in their applications may be vulnerable to the External Entity Expansion aspect of this flaw. This will be patched in a forthcoming release.\n\nRed Hat JBoss Fuse is not affected by this flaw, as it does not use the vulnerable functionality of either aspect of this flaw. Fuse customers who may be running external Solr servers, while not affected from the Fuse side, are advised to secure their Solr servers as recommended in the mitigation provided.\n\nThe following products ship only the Lucene components relevant to this flaw, and are not vulnerable to the second portion of the vulnerability, the code execution exploit. As such, the impact of this flaw has been determined to be Moderate for these respective products:\nRed Hat JBoss Data Grid 7 \nRed Hat Enterprise Linux 6\nRed Hat Software Collections 2.4\n\nThis issue did not affect the versions of lucene as shipped with Red Hat Enterprise Linux 5.\n\nThis issue does not affect Elasticsearch as shipped in OpenShift Container Platform.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12629", }, { category: "external", summary: "RHBZ#1501529", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1501529", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12629", url: "https://www.cve.org/CVERecord?id=CVE-2017-12629", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12629", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12629", }, { category: "external", summary: "https://access.redhat.com/security/vulnerabilities/CVE-2017-12629", url: "https://access.redhat.com/security/vulnerabilities/CVE-2017-12629", }, ], release_date: "2017-10-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, { category: "workaround", details: "Until fixes are available, all Solr users are advised to restart their Solr instances with the system parameter `-Ddisable.configEdit=true`. This will disallow any changes to be made to configurations via the Config API. This is a key factor in this vulnerability, since it allows GET requests to add the RunExecutableListener to the config.\n\nThis is sufficient to protect from this type of attack, but means you cannot use the edit capabilities of the Config API until further fixes are in place.", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], scores: [ { cvss_v2: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 10, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "Solr: Code execution via entity expansion", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Chris McCown", ], }, ], cve: "CVE-2018-8088", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-02-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1548909", }, ], notes: [ { category: "description", text: "An XML deserialization vulnerability was discovered in slf4j's EventData, which accepts an XML serialized string and can lead to arbitrary code execution.", title: "Vulnerability description", }, { category: "summary", text: "slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution", title: "Vulnerability summary", }, { category: "other", text: "Subscription Asset Manager is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having a security impact of Important, and is not currently planned to be addressed in future updates.\n\nThis issue did not affect the versions of Candlepin as shipped with Red Hat Satellite 6 as Candlepin uses slf4j-api and not the affected slf4j-ext (which is not on the Candlepin classpath).\n\nRed Hat Enterprise Virtualization Manager 4.1 is affected by this issue. Updated packages that address this issue are available through the Red Hat Enterprise Linux Server channels. Virtualization Manager hosts should be subscribed to these channels and obtain the updates via `yum update`.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-8088", }, { category: "external", summary: "RHBZ#1548909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1548909", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-8088", url: "https://www.cve.org/CVERecord?id=CVE-2018-8088", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-8088", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-8088", }, ], release_date: "2018-02-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution", }, ], }
RHSA-2019:1326
Vulnerability from csaf_redhat
Published
2019-06-04 14:33
Modified
2024-11-22 10:33
Summary
Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R12 security and bug fix update
Notes
Topic
An update is now available for Red Hat JBoss Fuse 6.3 and Red Hat JBoss A-MQ 6.3.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Fuse provides a small-footprint, flexible, open source enterprise service bus and integration platform. Red Hat A-MQ is a standards compliant messaging system that is tailored for use in mission critical applications.
This patch is an update to Red Hat Fuse 6.3 and Red Hat A-MQ 6.3. It includes bug fixes, which are documented in the patch notes accompanying the package on the download page. See the download link given in the references section below.
Security fix(es):
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Fuse 6.3 and Red Hat JBoss A-MQ 6.3.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Fuse provides a small-footprint, flexible, open source enterprise service bus and integration platform. Red Hat A-MQ is a standards compliant messaging system that is tailored for use in mission critical applications.\n\nThis patch is an update to Red Hat Fuse 6.3 and Red Hat A-MQ 6.3. It includes bug fixes, which are documented in the patch notes accompanying the package on the download page. See the download link given in the references section below.\n\nSecurity fix(es):\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:1326", url: "https://access.redhat.com/errata/RHSA-2019:1326", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.amq.broker&downloadType=securityPatches&version=6.3.0", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.amq.broker&downloadType=securityPatches&version=6.3.0", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.fuse&downloadType=securityPatches&version=6.3", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.fuse&downloadType=securityPatches&version=6.3", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_1326.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R12 security and bug fix update", tracking: { current_release_date: "2024-11-22T10:33:24+00:00", generator: { date: "2024-11-22T10:33:24+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2019:1326", initial_release_date: "2019-06-04T14:33:05+00:00", revision_history: [ { date: "2019-06-04T14:33:05+00:00", number: "1", summary: "Initial version", }, { date: "2019-06-04T14:33:05+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T10:33:24+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Fuse 6.3", product: { name: "Red Hat Fuse 6.3", product_id: "Red Hat Fuse 6.3", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_amq:6.3", }, }, }, ], category: "product_family", name: "Red Hat JBoss Fuse", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Fuse 6.3", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-06-04T14:33:05+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nInstallation instructions are located in the download section of the customer portal.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Fuse 6.3", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:1326", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat Fuse 6.3", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, ], }
RHSA-2018:0294
Vulnerability from csaf_redhat
Published
2018-02-12 17:19
Modified
2025-04-09 16:40
Summary
Red Hat Security Advisory: Red Hat JBoss Data Grid 7.1.2 security update
Notes
Topic
Red Hat JBoss Data Grid 7.1.2 is now available for download from the Customer Portal.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Data Grid is a distributed in-memory data grid, based on Infinispan.
This release of Red Hat JBoss Data Grid 7.1.2 serves as a replacement for Red Hat JBoss Data Grid 7.1.1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. (CVE-2017-7525)
* It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks. (CVE-2017-15089)
* A vulnerability was found in Jasypt that would allow an attacker to perform a timing attack on password hash comparison. (CVE-2014-9970)
Red Hat would like to thank Liao Xinxi (NSFOCUS) for reporting CVE-2017-7525 and Man Yue Mo (Semmle/lgtm.com) for reporting CVE-2017-15089.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat JBoss Data Grid 7.1.2 is now available for download from the Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Data Grid is a distributed in-memory data grid, based on Infinispan.\n\nThis release of Red Hat JBoss Data Grid 7.1.2 serves as a replacement for Red Hat JBoss Data Grid 7.1.1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. (CVE-2017-7525)\n\n* It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks. (CVE-2017-15089)\n\n* A vulnerability was found in Jasypt that would allow an attacker to perform a timing attack on password hash comparison. (CVE-2014-9970)\n\nRed Hat would like to thank Liao Xinxi (NSFOCUS) for reporting CVE-2017-7525 and Man Yue Mo (Semmle/lgtm.com) for reporting CVE-2017-15089.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0294", url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=data.grid&downloadType=distributions&version=7.1.2", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=data.grid&downloadType=distributions&version=7.1.2", }, { category: "external", summary: "https://access.redhat.com/documentation/en-US/Red_Hat_JBoss_Data_Grid/", url: "https://access.redhat.com/documentation/en-US/Red_Hat_JBoss_Data_Grid/", }, { category: "external", summary: "1455566", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1455566", }, { category: "external", summary: "1462702", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1462702", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0294.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Data Grid 7.1.2 security update", tracking: { current_release_date: "2025-04-09T16:40:52+00:00", generator: { date: "2025-04-09T16:40:52+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2018:0294", initial_release_date: "2018-02-12T17:19:54+00:00", revision_history: [ { date: "2018-02-12T17:19:54+00:00", number: "1", summary: "Initial version", }, { date: "2018-02-12T17:19:54+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T16:40:52+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Data Grid 7.1", product: { name: "Red Hat JBoss Data Grid 7.1", product_id: "Red Hat JBoss Data Grid 7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_data_grid:7.1", }, }, }, ], category: "product_family", name: "Red Hat JBoss Data Grid", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2014-9970", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2017-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1455566", }, ], notes: [ { category: "description", text: "A vulnerability was found in Jasypt that would allow an attacker to perform a timing attack on password hash comparison.", title: "Vulnerability description", }, { category: "summary", text: "jasypt: Vulnerable to timing attack against the password hash comparison", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Data Grid 7.1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2014-9970", }, { category: "external", summary: "RHBZ#1455566", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1455566", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2014-9970", url: "https://www.cve.org/CVERecord?id=CVE-2014-9970", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2014-9970", url: "https://nvd.nist.gov/vuln/detail/CVE-2014-9970", }, ], release_date: "2017-02-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-02-12T17:19:54+00:00", details: "The References section of this erratum contains a download link (you must log in to download the update).\n\nBefore applying the update, back up your existing Red Hat JBoss Data Grid installation (including databases, configuration files, and so on).", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0294", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss Data Grid 7.1", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jasypt: Vulnerable to timing attack against the password hash comparison", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-7525", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-06-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1462702", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nAlthough JBoss Fuse ships the vulnerable version of jackson-databind, it does not call on enableDefaultTyping() for any polymorphic deserialization operations which is the root cause of this vulnerability. We have raised a Jira tracker to ensure that jackson-databind will be upgraded for Fuse 7.0, however due to feasibility issues jackson-databind cannot be upgraded in JBoss Fuse 6.3.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Data Grid 7.1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7525", }, { category: "external", summary: "RHBZ#1462702", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1462702", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7525", url: "https://www.cve.org/CVERecord?id=CVE-2017-7525", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7525", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7525", }, ], release_date: "2017-07-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-02-12T17:19:54+00:00", details: "The References section of this erratum contains a download link (you must log in to download the update).\n\nBefore applying the update, back up your existing Red Hat JBoss Data Grid installation (including databases, configuration files, and so on).", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Data Grid 7.1", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Data Grid 7.1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-02-12T17:19:54+00:00", details: "The References section of this erratum contains a download link (you must log in to download the update).\n\nBefore applying the update, back up your existing Red Hat JBoss Data Grid installation (including databases, configuration files, and so on).", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0294", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Data Grid 7.1", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, ], }
RHSA-2018:0479
Vulnerability from csaf_redhat
Published
2018-03-12 17:04
Modified
2025-04-09 17:23
Summary
Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 on RHEL 6
Notes
Topic
An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.
This release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0479", url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "JBEAP-7531", url: "https://issues.redhat.com/browse/JBEAP-7531", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0479.json", }, ], title: "Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 on RHEL 6", tracking: { current_release_date: "2025-04-09T17:23:05+00:00", generator: { date: "2025-04-09T17:23:05+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2018:0479", initial_release_date: "2018-03-12T17:04:50+00:00", revision_history: [ { date: "2018-03-12T17:04:50+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T17:04:50+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T17:23:05+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7::el6", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el6?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-cdi@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-crypto@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-spring@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-client@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jsapi@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-validator@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-cli@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-server@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jdbc-store@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-commons@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-ra@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-native@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-service-extensions@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-selector@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-journal@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-dto@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-core-client@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-client@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hqclient-protocol@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-server@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hornetq-protocol@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbosstxbridge@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-compensations@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-txframework@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-bridge@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbossxts@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-integration@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-integration@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-api@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-util@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-idlj@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-rt@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-services@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-tools@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-policy-stax@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-policy@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-dom@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-common@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-bindings@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-stax@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jsr310@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jdk8@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-json-provider@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-base@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client-common@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-ejb-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-transaction-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-naming-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-core@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-java8@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-entitymanager@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-envers@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-infinispan@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-config@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-impl@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-simple-schema@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-common@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-api@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-api@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-impl@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-wildfly8@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-remote@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-commons@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-jdbc@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-core@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-client-hotrod@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_id: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-modules@7.1.1-4.GA_redhat_2.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el6?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
rhsa-2018_0481
Vulnerability from csaf_redhat
Published
2018-03-12 17:31
Modified
2024-12-22 18:33
Summary
Red Hat Security Advisory: jboss-ec2-eap package for EAP 7.1.1
Notes
Topic
An update for eap7-jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 6 and Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The eap7-jboss-ec2-eap packages provide scripts for Red Hat JBoss Enterprise Application Platform running on the Amazon Web Services (AWS) Elastic Compute Cloud (EC2).
With this update, the eap7-jboss-ec2-eap package has been updated to ensure compatibility with Red Hat JBoss Enterprise Application Platform 7.1.1
Refer to the JBoss Enterprise Application Platform 7.1 Release Notes, linked to in the References section, for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for eap7-jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 6 and Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The eap7-jboss-ec2-eap packages provide scripts for Red Hat JBoss Enterprise Application Platform running on the Amazon Web Services (AWS) Elastic Compute Cloud (EC2).\n\nWith this update, the eap7-jboss-ec2-eap package has been updated to ensure compatibility with Red Hat JBoss Enterprise Application Platform 7.1.1\n\nRefer to the JBoss Enterprise Application Platform 7.1 Release Notes, linked to in the References section, for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0481", url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "JBEAP-7533", url: "https://issues.redhat.com/browse/JBEAP-7533", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0481.json", }, ], title: "Red Hat Security Advisory: jboss-ec2-eap package for EAP 7.1.1", tracking: { current_release_date: "2024-12-22T18:33:00+00:00", generator: { date: "2024-12-22T18:33:00+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.4", }, }, id: "RHSA-2018:0481", initial_release_date: "2018-03-12T17:31:33+00:00", revision_history: [ { date: "2018-03-12T17:31:33+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T17:31:33+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-22T18:33:00+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7.1::el7", }, }, }, { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7::el6", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, { branches: [ { category: "product_version", name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_id: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap-samples@7.1.1-3.1.GA_redhat_3.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_id: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap-samples@7.1.1-3.1.GA_redhat_3.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el6?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el6?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", }, product_reference: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", }, product_reference: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
rhsa-2018:0501
Vulnerability from csaf_redhat
Published
2018-03-13 14:45
Modified
2024-12-02 05:20
Summary
Red Hat Security Advisory: Red Hat Single Sign-On 7.2.1 security update
Notes
Topic
Red Hat Single Sign-On 7.2.1 is now available for download from the Customer Portal.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Single Sign-On 7.2 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.
This release of Red Hat Single Sign-On 7.2.1 serves as a replacement for Red Hat Single Sign-On 7.2.0, and includes several bug fixes and enhancements. For further information, refer to the Release Notes linked to in the References section.
Security Fix(es):
* hotrod client: unchecked deserialization in marshaller util (CVE-2016-0750)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat Single Sign-On 7.2.1 is now available for download from the Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Single Sign-On 7.2 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.\n\nThis release of Red Hat Single Sign-On 7.2.1 serves as a replacement for Red Hat Single Sign-On 7.2.0, and includes several bug fixes and enhancements. For further information, refer to the Release Notes linked to in the References section.\n\nSecurity Fix(es):\n\n* hotrod client: unchecked deserialization in marshaller util (CVE-2016-0750)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0501", url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches&product=core.service.rhsso&version=7.2", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches&product=core.service.rhsso&version=7.2", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_single_sign_on/?version=7.2", url: "https://access.redhat.com/documentation/en-us/red_hat_single_sign_on/?version=7.2", }, { category: "external", summary: "1300443", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1300443", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0501.json", }, ], title: "Red Hat Security Advisory: Red Hat Single Sign-On 7.2.1 security update", tracking: { current_release_date: "2024-12-02T05:20:11+00:00", generator: { date: "2024-12-02T05:20:11+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2018:0501", initial_release_date: "2018-03-13T14:45:37+00:00", revision_history: [ { date: "2018-03-13T14:45:37+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-13T14:45:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-02T05:20:11+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Single Sign-On 7.2.1 zip", product: { name: "Red Hat Single Sign-On 7.2.1 zip", product_id: "Red Hat Single Sign-On 7.2.1 zip", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_single_sign_on:7.2", }, }, }, ], category: "product_family", name: "Red Hat Single Sign-On", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Sebastian Olsson", ], organization: "TrueSec", }, ], cve: "CVE-2016-0750", cwe: { id: "CWE-138", name: "Improper Neutralization of Special Elements", }, discovery_date: "2015-01-05T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1300443", }, ], notes: [ { category: "description", text: "The hotrod java client in infinispan automatically deserializes bytearray message contents in certain events. A malicious user could exploit this flaw by injecting a specially-crafted serialized object to attain remote code execution or conduct other attacks.", title: "Vulnerability description", }, { category: "summary", text: "client: unchecked deserialization in marshaller util", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2016-0750", }, { category: "external", summary: "RHBZ#1300443", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1300443", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2016-0750", url: "https://www.cve.org/CVERecord?id=CVE-2016-0750", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2016-0750", url: "https://nvd.nist.gov/vuln/detail/CVE-2016-0750", }, ], release_date: "2017-11-16T18:11:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v2: { accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 3.6, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:H/Au:S/C:P/I:P/A:N", version: "2.0", }, cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "client: unchecked deserialization in marshaller util", }, { acknowledgments: [ { names: [ "Gregory Ramsperger", "Ryan Moak", ], }, ], cve: "CVE-2017-2670", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, discovery_date: "2017-04-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1438885", }, ], notes: [ { category: "description", text: "It was found that with non-clean TCP close, Websocket server gets into infinite loop on every IO thread, effectively causing DoS.", title: "Vulnerability description", }, { category: "summary", text: "undertow: IO thread DoS via unclean Websocket closing", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-2670", }, { category: "external", summary: "RHBZ#1438885", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1438885", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-2670", url: "https://www.cve.org/CVERecord?id=CVE-2017-2670", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-2670", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-2670", }, ], release_date: "2017-06-07T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: IO thread DoS via unclean Websocket closing", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { cve: "CVE-2017-16012", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2018-06-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1591854", }, ], notes: [ { category: "description", text: "[REJECTED CVE] This CVE has been rejected. This candidate is a duplicate of CVE-2015-9251. Note: All CVE users should reference CVE-2015-9251 instead of this candidate.", title: "Vulnerability description", }, { category: "summary", text: "js-jquery: XSS in responses from cross-origin ajax requests", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-16012", }, { category: "external", summary: "RHBZ#1591854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1591854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-16012", url: "https://www.cve.org/CVERecord?id=CVE-2017-16012", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-16012", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-16012", }, ], release_date: "2017-03-21T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.8, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "js-jquery: XSS in responses from cross-origin ajax requests", }, ], }
rhsa-2018_0501
Vulnerability from csaf_redhat
Published
2018-03-13 14:45
Modified
2024-12-02 05:20
Summary
Red Hat Security Advisory: Red Hat Single Sign-On 7.2.1 security update
Notes
Topic
Red Hat Single Sign-On 7.2.1 is now available for download from the Customer Portal.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Single Sign-On 7.2 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.
This release of Red Hat Single Sign-On 7.2.1 serves as a replacement for Red Hat Single Sign-On 7.2.0, and includes several bug fixes and enhancements. For further information, refer to the Release Notes linked to in the References section.
Security Fix(es):
* hotrod client: unchecked deserialization in marshaller util (CVE-2016-0750)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat Single Sign-On 7.2.1 is now available for download from the Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Single Sign-On 7.2 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.\n\nThis release of Red Hat Single Sign-On 7.2.1 serves as a replacement for Red Hat Single Sign-On 7.2.0, and includes several bug fixes and enhancements. For further information, refer to the Release Notes linked to in the References section.\n\nSecurity Fix(es):\n\n* hotrod client: unchecked deserialization in marshaller util (CVE-2016-0750)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0501", url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches&product=core.service.rhsso&version=7.2", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches&product=core.service.rhsso&version=7.2", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_single_sign_on/?version=7.2", url: "https://access.redhat.com/documentation/en-us/red_hat_single_sign_on/?version=7.2", }, { category: "external", summary: "1300443", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1300443", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0501.json", }, ], title: "Red Hat Security Advisory: Red Hat Single Sign-On 7.2.1 security update", tracking: { current_release_date: "2024-12-02T05:20:11+00:00", generator: { date: "2024-12-02T05:20:11+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2018:0501", initial_release_date: "2018-03-13T14:45:37+00:00", revision_history: [ { date: "2018-03-13T14:45:37+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-13T14:45:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-02T05:20:11+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Single Sign-On 7.2.1 zip", product: { name: "Red Hat Single Sign-On 7.2.1 zip", product_id: "Red Hat Single Sign-On 7.2.1 zip", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_single_sign_on:7.2", }, }, }, ], category: "product_family", name: "Red Hat Single Sign-On", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Sebastian Olsson", ], organization: "TrueSec", }, ], cve: "CVE-2016-0750", cwe: { id: "CWE-138", name: "Improper Neutralization of Special Elements", }, discovery_date: "2015-01-05T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1300443", }, ], notes: [ { category: "description", text: "The hotrod java client in infinispan automatically deserializes bytearray message contents in certain events. A malicious user could exploit this flaw by injecting a specially-crafted serialized object to attain remote code execution or conduct other attacks.", title: "Vulnerability description", }, { category: "summary", text: "client: unchecked deserialization in marshaller util", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2016-0750", }, { category: "external", summary: "RHBZ#1300443", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1300443", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2016-0750", url: "https://www.cve.org/CVERecord?id=CVE-2016-0750", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2016-0750", url: "https://nvd.nist.gov/vuln/detail/CVE-2016-0750", }, ], release_date: "2017-11-16T18:11:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v2: { accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 3.6, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:H/Au:S/C:P/I:P/A:N", version: "2.0", }, cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "client: unchecked deserialization in marshaller util", }, { acknowledgments: [ { names: [ "Gregory Ramsperger", "Ryan Moak", ], }, ], cve: "CVE-2017-2670", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, discovery_date: "2017-04-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1438885", }, ], notes: [ { category: "description", text: "It was found that with non-clean TCP close, Websocket server gets into infinite loop on every IO thread, effectively causing DoS.", title: "Vulnerability description", }, { category: "summary", text: "undertow: IO thread DoS via unclean Websocket closing", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-2670", }, { category: "external", summary: "RHBZ#1438885", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1438885", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-2670", url: "https://www.cve.org/CVERecord?id=CVE-2017-2670", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-2670", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-2670", }, ], release_date: "2017-06-07T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: IO thread DoS via unclean Websocket closing", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { cve: "CVE-2017-16012", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2018-06-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1591854", }, ], notes: [ { category: "description", text: "[REJECTED CVE] This CVE has been rejected. This candidate is a duplicate of CVE-2015-9251. Note: All CVE users should reference CVE-2015-9251 instead of this candidate.", title: "Vulnerability description", }, { category: "summary", text: "js-jquery: XSS in responses from cross-origin ajax requests", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-16012", }, { category: "external", summary: "RHBZ#1591854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1591854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-16012", url: "https://www.cve.org/CVERecord?id=CVE-2017-16012", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-16012", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-16012", }, ], release_date: "2017-03-21T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.8, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "js-jquery: XSS in responses from cross-origin ajax requests", }, ], }
rhsa-2020:2561
Vulnerability from csaf_redhat
Published
2020-06-15 16:08
Modified
2025-04-09 16:44
Summary
Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 12 security update
Notes
Topic
This is a security update for JBoss EAP Continuous Delivery 12.0.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform CD12 is a platform for Java applications based on the WildFly application runtime.
This release of Red Hat JBoss Enterprise Application Platform CD12 includes bug fixes and enhancements.
Security Fix(es):
* artemis: artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* lucene: Solr: Code execution via entity expansion (CVE-2017-12629)
* infinispan-core: infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution (CVE-2018-8088)
* elytron: client can use bogus uri in digest authentication (CVE-2017-12196)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "This is a security update for JBoss EAP Continuous Delivery 12.0.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform CD12 is a platform for Java applications based on the WildFly application runtime.\n\nThis release of Red Hat JBoss Enterprise Application Platform CD12 includes bug fixes and enhancements. \n\nSecurity Fix(es):\n\n* artemis: artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n* lucene: Solr: Code execution via entity expansion (CVE-2017-12629)\n* infinispan-core: infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n* slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution (CVE-2018-8088)\n* elytron: client can use bogus uri in digest authentication (CVE-2017-12196)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:2561", url: "https://access.redhat.com/errata/RHSA-2020:2561", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#critical", url: "https://access.redhat.com/security/updates/classification/#critical", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1501529", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1501529", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1548909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1548909", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2561.json", }, ], title: "Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 12 security update", tracking: { current_release_date: "2025-04-09T16:44:27+00:00", generator: { date: "2025-04-09T16:44:27+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2020:2561", initial_release_date: "2020-06-15T16:08:52+00:00", revision_history: [ { date: "2020-06-15T16:08:52+00:00", number: "1", summary: "Initial version", }, { date: "2020-06-15T16:08:52+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T16:44:27+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform Continuous Delivery", product: { name: "Red Hat JBoss Enterprise Application Platform Continuous Delivery", product_id: "Red Hat JBoss Enterprise Application Platform Continuous Delivery", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform_cd:12", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { cve: "CVE-2017-12629", cwe: { id: "CWE-138", name: "Improper Neutralization of Special Elements", }, discovery_date: "2017-10-12T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1501529", }, ], notes: [ { category: "description", text: "It was found that Apache Lucene would accept an object from an unauthenticated user that could be manipulated through subsequent post requests. An attacker could use this flaw to assemble an object that could permit execution of arbitrary code if the server enabled Apache Solr's Config API.", title: "Vulnerability description", }, { category: "summary", text: "Solr: Code execution via entity expansion", title: "Vulnerability summary", }, { category: "other", text: "The following products are not affected by this flaw, as they do not use the vulnerable functionality of either aspect of the issue.\nRed Hat JBoss Enterprise Application Platform 6\nRed Hat JBoss BPM Suite\nRed Hat JBoss BRMS\nRed Hat Enterprise Virtualization Manager\nRed Hat Single Sign-On 7\nRed Hat JBoss Portal Platform 6\n\nRed Hat JBoss Enterprise Application Platform 7 is not affected by this flaw. However, it does ship the vulnerable Lucene class in a dependency to another component. Customers who reuse the lucene-queryparser jar in their applications may be vulnerable to the External Entity Expansion aspect of this flaw. This will be patched in a forthcoming release.\n\nRed Hat JBoss Fuse is not affected by this flaw, as it does not use the vulnerable functionality of either aspect of this flaw. Fuse customers who may be running external Solr servers, while not affected from the Fuse side, are advised to secure their Solr servers as recommended in the mitigation provided.\n\nThe following products ship only the Lucene components relevant to this flaw, and are not vulnerable to the second portion of the vulnerability, the code execution exploit. As such, the impact of this flaw has been determined to be Moderate for these respective products:\nRed Hat JBoss Data Grid 7 \nRed Hat Enterprise Linux 6\nRed Hat Software Collections 2.4\n\nThis issue did not affect the versions of lucene as shipped with Red Hat Enterprise Linux 5.\n\nThis issue does not affect Elasticsearch as shipped in OpenShift Container Platform.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12629", }, { category: "external", summary: "RHBZ#1501529", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1501529", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12629", url: "https://www.cve.org/CVERecord?id=CVE-2017-12629", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12629", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12629", }, { category: "external", summary: "https://access.redhat.com/security/vulnerabilities/CVE-2017-12629", url: "https://access.redhat.com/security/vulnerabilities/CVE-2017-12629", }, ], release_date: "2017-10-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, { category: "workaround", details: "Until fixes are available, all Solr users are advised to restart their Solr instances with the system parameter `-Ddisable.configEdit=true`. This will disallow any changes to be made to configurations via the Config API. This is a key factor in this vulnerability, since it allows GET requests to add the RunExecutableListener to the config.\n\nThis is sufficient to protect from this type of attack, but means you cannot use the edit capabilities of the Config API until further fixes are in place.", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], scores: [ { cvss_v2: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 10, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "Solr: Code execution via entity expansion", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Chris McCown", ], }, ], cve: "CVE-2018-8088", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-02-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1548909", }, ], notes: [ { category: "description", text: "An XML deserialization vulnerability was discovered in slf4j's EventData, which accepts an XML serialized string and can lead to arbitrary code execution.", title: "Vulnerability description", }, { category: "summary", text: "slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution", title: "Vulnerability summary", }, { category: "other", text: "Subscription Asset Manager is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having a security impact of Important, and is not currently planned to be addressed in future updates.\n\nThis issue did not affect the versions of Candlepin as shipped with Red Hat Satellite 6 as Candlepin uses slf4j-api and not the affected slf4j-ext (which is not on the Candlepin classpath).\n\nRed Hat Enterprise Virtualization Manager 4.1 is affected by this issue. Updated packages that address this issue are available through the Red Hat Enterprise Linux Server channels. Virtualization Manager hosts should be subscribed to these channels and obtain the updates via `yum update`.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-8088", }, { category: "external", summary: "RHBZ#1548909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1548909", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-8088", url: "https://www.cve.org/CVERecord?id=CVE-2018-8088", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-8088", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-8088", }, ], release_date: "2018-02-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-06-15T16:08:52+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nYou must restart the JBoss server process for the update to take effect.\n\nThe References section of this erratum contains a download link (you must log in to download the update)", product_ids: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:2561", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Enterprise Application Platform Continuous Delivery", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution", }, ], }
RHSA-2018:0501
Vulnerability from csaf_redhat
Published
2018-03-13 14:45
Modified
2024-12-02 05:20
Summary
Red Hat Security Advisory: Red Hat Single Sign-On 7.2.1 security update
Notes
Topic
Red Hat Single Sign-On 7.2.1 is now available for download from the Customer Portal.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Single Sign-On 7.2 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.
This release of Red Hat Single Sign-On 7.2.1 serves as a replacement for Red Hat Single Sign-On 7.2.0, and includes several bug fixes and enhancements. For further information, refer to the Release Notes linked to in the References section.
Security Fix(es):
* hotrod client: unchecked deserialization in marshaller util (CVE-2016-0750)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat Single Sign-On 7.2.1 is now available for download from the Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Single Sign-On 7.2 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications.\n\nThis release of Red Hat Single Sign-On 7.2.1 serves as a replacement for Red Hat Single Sign-On 7.2.0, and includes several bug fixes and enhancements. For further information, refer to the Release Notes linked to in the References section.\n\nSecurity Fix(es):\n\n* hotrod client: unchecked deserialization in marshaller util (CVE-2016-0750)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0501", url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches&product=core.service.rhsso&version=7.2", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches&product=core.service.rhsso&version=7.2", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_single_sign_on/?version=7.2", url: "https://access.redhat.com/documentation/en-us/red_hat_single_sign_on/?version=7.2", }, { category: "external", summary: "1300443", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1300443", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0501.json", }, ], title: "Red Hat Security Advisory: Red Hat Single Sign-On 7.2.1 security update", tracking: { current_release_date: "2024-12-02T05:20:11+00:00", generator: { date: "2024-12-02T05:20:11+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2018:0501", initial_release_date: "2018-03-13T14:45:37+00:00", revision_history: [ { date: "2018-03-13T14:45:37+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-13T14:45:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-02T05:20:11+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Single Sign-On 7.2.1 zip", product: { name: "Red Hat Single Sign-On 7.2.1 zip", product_id: "Red Hat Single Sign-On 7.2.1 zip", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_single_sign_on:7.2", }, }, }, ], category: "product_family", name: "Red Hat Single Sign-On", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Sebastian Olsson", ], organization: "TrueSec", }, ], cve: "CVE-2016-0750", cwe: { id: "CWE-138", name: "Improper Neutralization of Special Elements", }, discovery_date: "2015-01-05T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1300443", }, ], notes: [ { category: "description", text: "The hotrod java client in infinispan automatically deserializes bytearray message contents in certain events. A malicious user could exploit this flaw by injecting a specially-crafted serialized object to attain remote code execution or conduct other attacks.", title: "Vulnerability description", }, { category: "summary", text: "client: unchecked deserialization in marshaller util", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2016-0750", }, { category: "external", summary: "RHBZ#1300443", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1300443", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2016-0750", url: "https://www.cve.org/CVERecord?id=CVE-2016-0750", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2016-0750", url: "https://nvd.nist.gov/vuln/detail/CVE-2016-0750", }, ], release_date: "2017-11-16T18:11:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v2: { accessComplexity: "HIGH", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 3.6, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:H/Au:S/C:P/I:P/A:N", version: "2.0", }, cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.2, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "client: unchecked deserialization in marshaller util", }, { acknowledgments: [ { names: [ "Gregory Ramsperger", "Ryan Moak", ], }, ], cve: "CVE-2017-2670", cwe: { id: "CWE-835", name: "Loop with Unreachable Exit Condition ('Infinite Loop')", }, discovery_date: "2017-04-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1438885", }, ], notes: [ { category: "description", text: "It was found that with non-clean TCP close, Websocket server gets into infinite loop on every IO thread, effectively causing DoS.", title: "Vulnerability description", }, { category: "summary", text: "undertow: IO thread DoS via unclean Websocket closing", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-2670", }, { category: "external", summary: "RHBZ#1438885", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1438885", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-2670", url: "https://www.cve.org/CVERecord?id=CVE-2017-2670", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-2670", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-2670", }, ], release_date: "2017-06-07T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: IO thread DoS via unclean Websocket closing", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { cve: "CVE-2017-16012", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2018-06-04T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1591854", }, ], notes: [ { category: "description", text: "[REJECTED CVE] This CVE has been rejected. This candidate is a duplicate of CVE-2015-9251. Note: All CVE users should reference CVE-2015-9251 instead of this candidate.", title: "Vulnerability description", }, { category: "summary", text: "js-jquery: XSS in responses from cross-origin ajax requests", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-16012", }, { category: "external", summary: "RHBZ#1591854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1591854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-16012", url: "https://www.cve.org/CVERecord?id=CVE-2017-16012", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-16012", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-16012", }, ], release_date: "2017-03-21T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-13T14:45:37+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Single Sign-On 7.2.1 zip", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0501", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.8, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N", version: "3.0", }, products: [ "Red Hat Single Sign-On 7.2.1 zip", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "js-jquery: XSS in responses from cross-origin ajax requests", }, ], }
RHSA-2018:0480
Vulnerability from csaf_redhat
Published
2018-03-12 17:03
Modified
2025-04-09 17:23
Summary
Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 for RHEL 7
Notes
Topic
An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.
This release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0480", url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.1/html/installation_guide/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.1/html/installation_guide/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "JBEAP-7532", url: "https://issues.redhat.com/browse/JBEAP-7532", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0480.json", }, ], title: "Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 for RHEL 7", tracking: { current_release_date: "2025-04-09T17:23:11+00:00", generator: { date: "2025-04-09T17:23:11+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2018:0480", initial_release_date: "2018-03-12T17:03:31+00:00", revision_history: [ { date: "2018-03-12T17:03:31+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T17:03:31+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T17:23:11+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7.1::el7", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-cdi@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-spring@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-crypto@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-client@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jsapi@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-validator@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-server@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-journal@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-cli@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jdbc-store@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-service-extensions@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-commons@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-selector@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-native@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-dto@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-core-client@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hornetq-protocol@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-server@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hqclient-protocol@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-client@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-ra@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbosstxbridge@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-compensations@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-txframework@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-bridge@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbossxts@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-integration@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-integration@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-util@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-api@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-idlj@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-tools@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-rt@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-services@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-policy-stax@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-policy@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-dom@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-common@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-bindings@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-stax@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jsr310@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jdk8@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-json-provider@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-base@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-ejb-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client-common@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-transaction-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-naming-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-core@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-java8@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-entitymanager@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-envers@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-infinispan@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-config@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-impl@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-simple-schema@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-common@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-api@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-api@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-impl@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-wildfly8@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-remote@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-commons@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-core@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-jdbc@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-client-hotrod@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_id: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-modules@7.1.1-4.GA_redhat_2.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
rhsa-2018_0480
Vulnerability from csaf_redhat
Published
2018-03-12 17:03
Modified
2024-12-22 18:32
Summary
Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 for RHEL 7
Notes
Topic
An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.
This release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0480", url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.1/html/installation_guide/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.1/html/installation_guide/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "JBEAP-7532", url: "https://issues.redhat.com/browse/JBEAP-7532", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0480.json", }, ], title: "Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 for RHEL 7", tracking: { current_release_date: "2024-12-22T18:32:54+00:00", generator: { date: "2024-12-22T18:32:54+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.4", }, }, id: "RHSA-2018:0480", initial_release_date: "2018-03-12T17:03:31+00:00", revision_history: [ { date: "2018-03-12T17:03:31+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T17:03:31+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-22T18:32:54+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7.1::el7", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-cdi@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-spring@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-crypto@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-client@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jsapi@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-validator@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-server@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-journal@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-cli@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jdbc-store@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-service-extensions@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-commons@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-selector@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-native@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-dto@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-core-client@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hornetq-protocol@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-server@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hqclient-protocol@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-client@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-ra@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbosstxbridge@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-compensations@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-txframework@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-bridge@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbossxts@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-integration@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-integration@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-util@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-api@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-idlj@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-tools@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-rt@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-services@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-policy-stax@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-policy@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-dom@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-common@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-bindings@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-stax@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jsr310@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jdk8@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-json-provider@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-base@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-ejb-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client-common@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-transaction-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-naming-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-core@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-java8@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-entitymanager@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-envers@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-infinispan@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-config@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-impl@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-simple-schema@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-common@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-api@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-api@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-impl@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-wildfly8@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-remote@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-commons@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-core@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-jdbc@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-client-hotrod@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_id: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-modules@7.1.1-4.GA_redhat_2.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
rhsa-2018:0481
Vulnerability from csaf_redhat
Published
2018-03-12 17:31
Modified
2025-04-09 17:23
Summary
Red Hat Security Advisory: jboss-ec2-eap package for EAP 7.1.1
Notes
Topic
An update for eap7-jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 6 and Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The eap7-jboss-ec2-eap packages provide scripts for Red Hat JBoss Enterprise Application Platform running on the Amazon Web Services (AWS) Elastic Compute Cloud (EC2).
With this update, the eap7-jboss-ec2-eap package has been updated to ensure compatibility with Red Hat JBoss Enterprise Application Platform 7.1.1
Refer to the JBoss Enterprise Application Platform 7.1 Release Notes, linked to in the References section, for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for eap7-jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 6 and Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The eap7-jboss-ec2-eap packages provide scripts for Red Hat JBoss Enterprise Application Platform running on the Amazon Web Services (AWS) Elastic Compute Cloud (EC2).\n\nWith this update, the eap7-jboss-ec2-eap package has been updated to ensure compatibility with Red Hat JBoss Enterprise Application Platform 7.1.1\n\nRefer to the JBoss Enterprise Application Platform 7.1 Release Notes, linked to in the References section, for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0481", url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "JBEAP-7533", url: "https://issues.redhat.com/browse/JBEAP-7533", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0481.json", }, ], title: "Red Hat Security Advisory: jboss-ec2-eap package for EAP 7.1.1", tracking: { current_release_date: "2025-04-09T17:23:17+00:00", generator: { date: "2025-04-09T17:23:17+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2018:0481", initial_release_date: "2018-03-12T17:31:33+00:00", revision_history: [ { date: "2018-03-12T17:31:33+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T17:31:33+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T17:23:17+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7.1::el7", }, }, }, { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7::el6", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, { branches: [ { category: "product_version", name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_id: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap-samples@7.1.1-3.1.GA_redhat_3.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_id: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap-samples@7.1.1-3.1.GA_redhat_3.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el6?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el6?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", }, product_reference: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", }, product_reference: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
RHSA-2018:0481
Vulnerability from csaf_redhat
Published
2018-03-12 17:31
Modified
2025-04-09 17:23
Summary
Red Hat Security Advisory: jboss-ec2-eap package for EAP 7.1.1
Notes
Topic
An update for eap7-jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 6 and Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The eap7-jboss-ec2-eap packages provide scripts for Red Hat JBoss Enterprise Application Platform running on the Amazon Web Services (AWS) Elastic Compute Cloud (EC2).
With this update, the eap7-jboss-ec2-eap package has been updated to ensure compatibility with Red Hat JBoss Enterprise Application Platform 7.1.1
Refer to the JBoss Enterprise Application Platform 7.1 Release Notes, linked to in the References section, for information on the most significant bug fixes and enhancements included in this release.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for eap7-jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 6 and Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The eap7-jboss-ec2-eap packages provide scripts for Red Hat JBoss Enterprise Application Platform running on the Amazon Web Services (AWS) Elastic Compute Cloud (EC2).\n\nWith this update, the eap7-jboss-ec2-eap package has been updated to ensure compatibility with Red Hat JBoss Enterprise Application Platform 7.1.1\n\nRefer to the JBoss Enterprise Application Platform 7.1 Release Notes, linked to in the References section, for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0481", url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "JBEAP-7533", url: "https://issues.redhat.com/browse/JBEAP-7533", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0481.json", }, ], title: "Red Hat Security Advisory: jboss-ec2-eap package for EAP 7.1.1", tracking: { current_release_date: "2025-04-09T17:23:17+00:00", generator: { date: "2025-04-09T17:23:17+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2018:0481", initial_release_date: "2018-03-12T17:31:33+00:00", revision_history: [ { date: "2018-03-12T17:31:33+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T17:31:33+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T17:23:17+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7.1::el7", }, }, }, { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7::el6", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, { branches: [ { category: "product_version", name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_id: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap-samples@7.1.1-3.1.GA_redhat_3.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_id: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap-samples@7.1.1-3.1.GA_redhat_3.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el6?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", product: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", product_id: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-ec2-eap@7.1.1-3.1.GA_redhat_3.ep7.el6?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", }, product_reference: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", }, product_reference: "eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", }, product_reference: "eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:31:33+00:00", details: "For details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0481", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el6.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-0:7.1.1-3.1.GA_redhat_3.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-ec2-eap-samples-0:7.1.1-3.1.GA_redhat_3.ep7.el7.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
rhsa-2018_0294
Vulnerability from csaf_redhat
Published
2018-02-12 17:19
Modified
2024-11-22 10:33
Summary
Red Hat Security Advisory: Red Hat JBoss Data Grid 7.1.2 security update
Notes
Topic
Red Hat JBoss Data Grid 7.1.2 is now available for download from the Customer Portal.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Data Grid is a distributed in-memory data grid, based on Infinispan.
This release of Red Hat JBoss Data Grid 7.1.2 serves as a replacement for Red Hat JBoss Data Grid 7.1.1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. (CVE-2017-7525)
* It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks. (CVE-2017-15089)
* A vulnerability was found in Jasypt that would allow an attacker to perform a timing attack on password hash comparison. (CVE-2014-9970)
Red Hat would like to thank Liao Xinxi (NSFOCUS) for reporting CVE-2017-7525 and Man Yue Mo (Semmle/lgtm.com) for reporting CVE-2017-15089.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Red Hat JBoss Data Grid 7.1.2 is now available for download from the Customer Portal.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Data Grid is a distributed in-memory data grid, based on Infinispan.\n\nThis release of Red Hat JBoss Data Grid 7.1.2 serves as a replacement for Red Hat JBoss Data Grid 7.1.1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. (CVE-2017-7525)\n\n* It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks. (CVE-2017-15089)\n\n* A vulnerability was found in Jasypt that would allow an attacker to perform a timing attack on password hash comparison. (CVE-2014-9970)\n\nRed Hat would like to thank Liao Xinxi (NSFOCUS) for reporting CVE-2017-7525 and Man Yue Mo (Semmle/lgtm.com) for reporting CVE-2017-15089.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0294", url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=data.grid&downloadType=distributions&version=7.1.2", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=data.grid&downloadType=distributions&version=7.1.2", }, { category: "external", summary: "https://access.redhat.com/documentation/en-US/Red_Hat_JBoss_Data_Grid/", url: "https://access.redhat.com/documentation/en-US/Red_Hat_JBoss_Data_Grid/", }, { category: "external", summary: "1455566", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1455566", }, { category: "external", summary: "1462702", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1462702", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0294.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Data Grid 7.1.2 security update", tracking: { current_release_date: "2024-11-22T10:33:42+00:00", generator: { date: "2024-11-22T10:33:42+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2018:0294", initial_release_date: "2018-02-12T17:19:54+00:00", revision_history: [ { date: "2018-02-12T17:19:54+00:00", number: "1", summary: "Initial version", }, { date: "2018-02-12T17:19:54+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T10:33:42+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Data Grid 7.1", product: { name: "Red Hat JBoss Data Grid 7.1", product_id: "Red Hat JBoss Data Grid 7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_data_grid:7.1", }, }, }, ], category: "product_family", name: "Red Hat JBoss Data Grid", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2014-9970", cwe: { id: "CWE-385", name: "Covert Timing Channel", }, discovery_date: "2017-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1455566", }, ], notes: [ { category: "description", text: "A vulnerability was found in Jasypt that would allow an attacker to perform a timing attack on password hash comparison.", title: "Vulnerability description", }, { category: "summary", text: "jasypt: Vulnerable to timing attack against the password hash comparison", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Data Grid 7.1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2014-9970", }, { category: "external", summary: "RHBZ#1455566", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1455566", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2014-9970", url: "https://www.cve.org/CVERecord?id=CVE-2014-9970", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2014-9970", url: "https://nvd.nist.gov/vuln/detail/CVE-2014-9970", }, ], release_date: "2017-02-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-02-12T17:19:54+00:00", details: "The References section of this erratum contains a download link (you must log in to download the update).\n\nBefore applying the update, back up your existing Red Hat JBoss Data Grid installation (including databases, configuration files, and so on).", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0294", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss Data Grid 7.1", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jasypt: Vulnerable to timing attack against the password hash comparison", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-7525", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-06-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1462702", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nAlthough JBoss Fuse ships the vulnerable version of jackson-databind, it does not call on enableDefaultTyping() for any polymorphic deserialization operations which is the root cause of this vulnerability. We have raised a Jira tracker to ensure that jackson-databind will be upgraded for Fuse 7.0, however due to feasibility issues jackson-databind cannot be upgraded in JBoss Fuse 6.3.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Data Grid 7.1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7525", }, { category: "external", summary: "RHBZ#1462702", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1462702", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7525", url: "https://www.cve.org/CVERecord?id=CVE-2017-7525", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7525", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7525", }, ], release_date: "2017-07-14T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-02-12T17:19:54+00:00", details: "The References section of this erratum contains a download link (you must log in to download the update).\n\nBefore applying the update, back up your existing Red Hat JBoss Data Grid installation (including databases, configuration files, and so on).", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Data Grid 7.1", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss Data Grid 7.1", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-02-12T17:19:54+00:00", details: "The References section of this erratum contains a download link (you must log in to download the update).\n\nBefore applying the update, back up your existing Red Hat JBoss Data Grid installation (including databases, configuration files, and so on).", product_ids: [ "Red Hat JBoss Data Grid 7.1", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0294", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss Data Grid 7.1", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, ], }
rhsa-2018_0478
Vulnerability from csaf_redhat
Published
2018-03-12 16:37
Modified
2024-12-22 18:33
Summary
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.1 security update
Notes
Topic
An update is now available for Red Hat JBoss Enterprise Application Platform.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.
This release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Enterprise Application Platform.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0478", url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform&downloadType=securityPatches&version=7.1", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform&downloadType=securityPatches&version=7.1", }, { category: "external", summary: "https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/version-7.1", url: "https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/version-7.1", }, { category: "external", summary: "https://access.redhat.com/documentation/en/jboss-enterprise-application-platform/", url: "https://access.redhat.com/documentation/en/jboss-enterprise-application-platform/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0478.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.1 security update", tracking: { current_release_date: "2024-12-22T18:33:34+00:00", generator: { date: "2024-12-22T18:33:34+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.4", }, }, id: "RHSA-2018:0478", initial_release_date: "2018-03-12T16:37:39+00:00", revision_history: [ { date: "2018-03-12T16:37:39+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T16:37:39+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-22T18:33:34+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss EAP 7", product: { name: "Red Hat JBoss EAP 7", product_id: "Red Hat JBoss EAP 7", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "Red Hat JBoss EAP 7", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat JBoss EAP 7", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T16:37:39+00:00", details: "Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat JBoss EAP 7", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0478", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat JBoss EAP 7", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
rhsa-2018_0479
Vulnerability from csaf_redhat
Published
2018-03-12 17:04
Modified
2024-12-22 18:32
Summary
Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 on RHEL 6
Notes
Topic
An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.
This release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0479", url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "JBEAP-7531", url: "https://issues.redhat.com/browse/JBEAP-7531", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0479.json", }, ], title: "Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 on RHEL 6", tracking: { current_release_date: "2024-12-22T18:32:46+00:00", generator: { date: "2024-12-22T18:32:46+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.4", }, }, id: "RHSA-2018:0479", initial_release_date: "2018-03-12T17:04:50+00:00", revision_history: [ { date: "2018-03-12T17:04:50+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T17:04:50+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-22T18:32:46+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7::el6", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el6?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-cdi@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-crypto@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-spring@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-client@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jsapi@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-validator@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-cli@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-server@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jdbc-store@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-commons@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-ra@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-native@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-service-extensions@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-selector@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-journal@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-dto@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-core-client@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-client@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hqclient-protocol@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-server@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hornetq-protocol@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbosstxbridge@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-compensations@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-txframework@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-bridge@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbossxts@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-integration@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-integration@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-api@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-util@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-idlj@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-rt@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-services@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-tools@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-policy-stax@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-policy@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-dom@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-common@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-bindings@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-stax@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jsr310@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jdk8@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-json-provider@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-base@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client-common@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-ejb-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-transaction-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-naming-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-core@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-java8@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-entitymanager@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-envers@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-infinispan@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-config@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-impl@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-simple-schema@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-common@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-api@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-api@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-impl@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-wildfly8@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-remote@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-commons@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-jdbc@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-core@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-client-hotrod@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_id: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-modules@7.1.1-4.GA_redhat_2.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el6?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
rhsa-2018:0480
Vulnerability from csaf_redhat
Published
2018-03-12 17:03
Modified
2025-04-09 17:23
Summary
Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 for RHEL 7
Notes
Topic
An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.
This release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0480", url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.1/html/installation_guide/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.1/html/installation_guide/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "JBEAP-7532", url: "https://issues.redhat.com/browse/JBEAP-7532", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0480.json", }, ], title: "Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 for RHEL 7", tracking: { current_release_date: "2025-04-09T17:23:11+00:00", generator: { date: "2025-04-09T17:23:11+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2018:0480", initial_release_date: "2018-03-12T17:03:31+00:00", revision_history: [ { date: "2018-03-12T17:03:31+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T17:03:31+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T17:23:11+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7.1::el7", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", product: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_id: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.8.11-1.redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el7?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-cdi@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-spring@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-crypto@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-client@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jsapi@3.0.25-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-validator@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.4.7-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-server@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-journal@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-cli@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jdbc-store@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-service-extensions@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-commons@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-selector@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-native@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-dto@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-core-client@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hornetq-protocol@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-server@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hqclient-protocol@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-client@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-ra@1.5.5.009-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbosstxbridge@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-compensations@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-txframework@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-bridge@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbossxts@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-integration@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-integration@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-util@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-api@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-idlj@5.5.31-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-tools@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-rt@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-services@3.1.13-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-policy-stax@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-policy@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-dom@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-common@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-bindings@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-stax@2.1.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jsr310@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jdk8@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-json-provider@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_id: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-base@2.8.11-1.redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-ejb-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client-common@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-transaction-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-naming-client@1.0.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-core@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-java8@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-entitymanager@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-envers@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-infinispan@5.1.12-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-config@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-impl@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-simple-schema@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-common@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-api@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-api@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-impl@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-wildfly8@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-remote@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-commons@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-core@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-jdbc@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_id: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-client-hotrod@8.2.9-1.Final_redhat_1.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_id: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-modules@7.1.1-4.GA_redhat_2.1.ep7.el7?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el7?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", }, product_reference: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", }, product_reference: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", relates_to_product_reference: "7Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 7 Server", product_id: "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", relates_to_product_reference: "7Server-JBEAP-7.1", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:03:31+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0480", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el7.src", "7Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.noarch", "7Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el7.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
rhsa-2018:0479
Vulnerability from csaf_redhat
Published
2018-03-12 17:04
Modified
2025-04-09 17:23
Summary
Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 on RHEL 6
Notes
Topic
An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.
This release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)
* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)
* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)
* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)
* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)
* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.\n\nThis release of Red Hat JBoss Enterprise Application Platform 7.1.1 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.1.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* artemis/hornetq: memory exhaustion via UDP and JGroups discovery (CVE-2017-12174)\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) (CVE-2017-15095)\n\n* jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) (CVE-2017-17485)\n\n* resteasy: Vary header not added by CORS filter leading to cache poisoning (CVE-2017-7561)\n\n* undertow: Client can use bogus uri in Digest authentication (CVE-2017-12196)\n\n* undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser (CVE-2018-1048)\n\n* jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) (CVE-2018-5968)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2018:0479", url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", url: "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/", }, { category: "external", summary: "1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "JBEAP-7531", url: "https://issues.redhat.com/browse/JBEAP-7531", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0479.json", }, ], title: "Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 on RHEL 6", tracking: { current_release_date: "2025-04-09T17:23:05+00:00", generator: { date: "2025-04-09T17:23:05+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2018:0479", initial_release_date: "2018-03-12T17:04:50+00:00", revision_history: [ { date: "2018-03-12T17:04:50+00:00", number: "1", summary: "Initial version", }, { date: "2018-03-12T17:04:50+00:00", number: "2", summary: "Last updated version", }, { date: "2025-04-09T17:23:05+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product: { name: "Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_enterprise_application_platform:7::el6", }, }, }, ], category: "product_family", name: "Red Hat JBoss Enterprise Application Platform", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", product: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_id: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.8.11-1.redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el6?arch=src", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el6?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow-jastow@2.0.3-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-cdi@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-json-p-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxb-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-yaml-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-crypto@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-multipart-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jaxrs@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-spring@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-validator-provider-11@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-client@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jose-jwt@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-atom-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jsapi@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jettison-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-resteasy-jackson2-provider@3.0.25-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-spi@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-jdbc@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-deployers-common@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-impl@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-common-api@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-api@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-validator@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-ironjacamar-core-impl@1.4.7-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-cli@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-server@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jdbc-store@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-commons@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-ra@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-native@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-service-extensions@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-selector@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-journal@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-dto@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-core-client@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-jms-client@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hqclient-protocol@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-server@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-activemq-artemis-hornetq-protocol@1.5.5.009-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", product_id: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-glassfish-jsf@2.2.13-6.SP5_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbosstxbridge@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-compensations@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-txframework@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-bridge@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jbossxts@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-integration@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-integration@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-api@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-restat-util@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-narayana-jts-idlj@5.5.31-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-logmanager@2.0.8-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-rt@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-services@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-apache-cxf-tools@3.1.13-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-xml-security@2.0.9-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-policy-stax@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-policy@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-dom@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-common@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-bindings@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wss4j-ws-security-stax@2.1.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jbossws-cxf@5.1.10-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-elytron@1.1.8-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-core@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-databind@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jsr310@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-modules-java8@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-datatype-jdk8@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-module-jaxb-annotations@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-json-provider@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_id: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jackson-jaxrs-base@2.8.11-1.redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-client-common@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-ejb-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-transaction-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-http-naming-client@1.0.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-core@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-java8@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-entitymanager@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-envers@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-hibernate-infinispan@5.1.12-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-config@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-impl@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-simple-schema@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-common@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-api@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-federation@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-api@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-idm-impl@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-wildfly8@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_id: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-picketlink-bindings@2.5.5-10.SP9_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", product_id: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-undertow@1.4.18-4.SP2_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.1-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap6.4-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-cli@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly8.2-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly9.0-to-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-eap7.0@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-wildfly10.0-to-eap7.1@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_id: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-jboss-server-migration-core@1.0.3-6.Final_redhat_6.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-remote@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-commons@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-cachestore-jdbc@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-core@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_id: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-infinispan-client-hotrod@8.2.9-1.Final_redhat_1.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", product: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", product_id: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-javadocs@7.1.1-3.GA_redhat_2.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_id: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly-modules@7.1.1-4.GA_redhat_2.1.ep7.el6?arch=noarch", }, }, }, { category: "product_version", name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_id: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/eap7-wildfly@7.1.1-4.GA_redhat_2.1.ep7.el6?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", }, product_reference: "eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", }, product_reference: "eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", }, product_reference: "eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", }, product_reference: "eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", }, product_reference: "eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", }, product_reference: "eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", relates_to_product_reference: "6Server-JBEAP-7.1", }, { category: "default_component_of", full_product_name: { name: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src as a component of Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6 Server", product_id: "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", }, product_reference: "eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", relates_to_product_reference: "6Server-JBEAP-7.1", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Jason Shepherd", ], organization: "Red Hat Product Security", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-7561", cwe: { id: "CWE-345", name: "Insufficient Verification of Data Authenticity", }, discovery_date: "2017-08-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1483823", }, ], notes: [ { category: "description", text: "It was discovered that the CORS Filter did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.", title: "Vulnerability description", }, { category: "summary", text: "resteasy: Vary header not added by CORS filter leading to cache poisoning", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-7561", }, { category: "external", summary: "RHBZ#1483823", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1483823", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-7561", url: "https://www.cve.org/CVERecord?id=CVE-2017-7561", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-7561", }, ], release_date: "2017-08-22T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "resteasy: Vary header not added by CORS filter leading to cache poisoning", }, { acknowledgments: [ { names: [ "Masafumi Miura", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12174", cwe: { id: "CWE-20", name: "Improper Input Validation", }, discovery_date: "2017-09-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1498378", }, ], notes: [ { category: "description", text: "It was found that when Artemis and HornetQ are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may result in a heap memory exhaustion, full GC, or OutOfMemoryError.", title: "Vulnerability description", }, { category: "summary", text: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12174", }, { category: "external", summary: "RHBZ#1498378", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1498378", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12174", url: "https://www.cve.org/CVERecord?id=CVE-2017-12174", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12174", }, ], release_date: "2018-02-05T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "artemis/hornetq: memory exhaustion via UDP and JGroups discovery", }, { acknowledgments: [ { names: [ "Jan Stourac", ], organization: "Red Hat", summary: "This issue was discovered by Red Hat.", }, ], cve: "CVE-2017-12196", cwe: { id: "CWE-287", name: "Improper Authentication", }, discovery_date: "2017-10-03T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503055", }, ], notes: [ { category: "description", text: "It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server.", title: "Vulnerability description", }, { category: "summary", text: "undertow: Client can use bogus uri in Digest authentication", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-12196", }, { category: "external", summary: "RHBZ#1503055", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503055", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-12196", url: "https://www.cve.org/CVERecord?id=CVE-2017-12196", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12196", }, ], release_date: "2018-03-12T15:56:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.8, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: Client can use bogus uri in Digest authentication", }, { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, { acknowledgments: [ { names: [ "Liao Xinxi", ], organization: "NSFOCUS", }, ], cve: "CVE-2017-15095", cwe: { id: "CWE-184", name: "Incomplete List of Disallowed Inputs", }, discovery_date: "2017-10-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1506612", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaw CVE-2017-7525 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", title: "Vulnerability summary", }, { category: "other", text: "This issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellite 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nJBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advise about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15095", }, { category: "external", summary: "RHBZ#1506612", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1506612", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15095", url: "https://www.cve.org/CVERecord?id=CVE-2017-15095", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15095", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-11-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { category: "workaround", details: "Mitigation to this problem is to not trigger polymorphic desrialization globally by using: objectMapper.enableDefaultTyping() and rather use @JsonTypeInfo on the class property to explicitly define the type information. For more information on this issue please refer to https://www.github.com/mbechler/marshalsec/blob/master/marshalsec.pdf?raw=true", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)", }, { acknowledgments: [ { names: [ "0c0c0f from 360观星实验室", ], }, ], cve: "CVE-2017-17485", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-12-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1528565", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending maliciously crafted input to the readValue method of ObjectMapper. This issue extends upon the previous flaws CVE-2017-7525 and CVE-2017-15095 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-17485", }, { category: "external", summary: "RHBZ#1528565", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1528565", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-17485", url: "https://www.cve.org/CVERecord?id=CVE-2017-17485", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-17485", }, { category: "external", summary: "https://access.redhat.com/solutions/3442891", url: "https://access.redhat.com/solutions/3442891", }, ], release_date: "2017-12-12T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)", }, { cve: "CVE-2018-1048", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2018-01-15T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1534343", }, ], notes: [ { category: "description", text: "It was found that the AJP connector in undertow does not use the ALLOW_ENCODED_SLASH option and thus allows the slash and anti-slash characters encoded in a URL. This may lead to path traversal and result in the information disclosure of arbitrary local files.", title: "Vulnerability description", }, { category: "summary", text: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-1048", }, { category: "external", summary: "RHBZ#1534343", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1534343", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-1048", url: "https://www.cve.org/CVERecord?id=CVE-2018-1048", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-1048", }, ], release_date: "2018-01-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.6, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "undertow: ALLOW_ENCODED_SLASH option not taken into account in the AjpRequestParser", }, { cve: "CVE-2018-5968", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2018-01-22T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1538332", }, ], notes: [ { category: "description", text: "A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by blacklisting more classes that could be used maliciously.", title: "Vulnerability description", }, { category: "summary", text: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", title: "Vulnerability summary", }, { category: "other", text: "JBoss EAP 7.x only uses the vulnerable Jackson Databind library for marshalling and unmarshalling of JSON objects passed to JAX-RS webservices. Some advice about how to remain safe when using JAX-RS webservices on JBoss EAP 7.x is available here: \n\nhttps://access.redhat.com/solutions/3279231\n\nThis issue affects the versions of jackson-databind (in Satellite 6.0 and 6.1) and candlepin (which embeds a copy of jackson-databind in Satellite 6.2) as shipped with Red Hat Satellitw 6.x. However the affected code is NOT used at this time:\n\nCandlepin currently uses the default type resolution configuration for the ObjectMappers it creates/uses. Nowhere in candlepin do we enable global polymorphic deserialization via enableDefaultTyping(...), therefore based on the documentation sited BZ 1462702 , candlepin should not be affected.\n\nHowever as the vulnerable software ships with the product we have marked them as vulnerable to ensure the issue is tracked.\n\nRed Hat Subscription Asset Manager version 1 is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having Important security impact and is not currently planned to be addressed in future updates.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2018-5968", }, { category: "external", summary: "RHBZ#1538332", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1538332", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2018-5968", url: "https://www.cve.org/CVERecord?id=CVE-2018-5968", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", url: "https://nvd.nist.gov/vuln/detail/CVE-2018-5968", }, ], release_date: "2018-01-18T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2018-03-12T17:04:50+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2018:0479", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-0:1.5.5.009-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-activemq-artemis-cli-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-commons-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-core-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-dto-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hornetq-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-hqclient-protocol-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jdbc-store-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-client-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-jms-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-journal-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-native-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-ra-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-selector-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-server-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-activemq-artemis-service-extensions-0:1.5.5.009-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-0:3.1.13-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-apache-cxf-rt-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-services-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-apache-cxf-tools-0:3.1.13-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-glassfish-jsf-0:2.2.13-6.SP5_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-0:5.1.12-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-hibernate-core-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-entitymanager-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-envers-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-infinispan-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-hibernate-java8-0:5.1.12-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-0:8.2.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-jdbc-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-cachestore-remote-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-client-hotrod-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-commons-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-infinispan-core-0:8.2.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-0:1.4.7-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-ironjacamar-common-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-common-spi-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-api-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-core-impl-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-deployers-common-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-jdbc-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-ironjacamar-validator-0:1.4.7-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-core-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-databind-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-datatype-jdk8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-datatype-jsr310-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-base-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-json-provider-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-jaxrs-providers-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-module-jaxb-annotations-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jackson-modules-java8-0:2.8.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-logmanager-0:2.0.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-0:1.0.3-6.Final_redhat_6.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-jboss-server-migration-cli-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-core-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap6.4-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly10.1-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly8.2-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.0-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jboss-server-migration-wildfly9.0-to-eap7.1-0:1.0.3-6.Final_redhat_6.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-jbossws-cxf-0:5.1.10-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-0:5.5.31-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-narayana-compensations-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbosstxbridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jbossxts-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-idlj-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-jts-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-api-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-bridge-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-integration-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-restat-util-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-narayana-txframework-0:5.5.31-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-bindings-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-common-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-config-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-federation-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-picketlink-idm-api-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-idm-simple-schema-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-impl-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-picketlink-wildfly8-0:2.5.5-10.SP9_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-0:3.0.25-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-resteasy-atom-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-cdi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-client-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-crypto-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jackson2-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxb-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jaxrs-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jettison-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jose-jwt-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-jsapi-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-json-p-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-multipart-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-spring-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-validator-provider-11-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-resteasy-yaml-provider-0:3.0.25-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-0:1.4.18-4.SP2_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-undertow-jastow-0:2.0.3-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-0:7.1.1-4.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-elytron-0:1.1.8-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-http-client-common-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-ejb-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-naming-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-http-transaction-client-0:1.0.9-1.Final_redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wildfly-javadocs-0:7.1.1-3.GA_redhat_2.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wildfly-modules-0:7.1.1-4.GA_redhat_2.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-0:2.1.11-1.redhat_1.1.ep7.el6.src", "6Server-JBEAP-7.1:eap7-wss4j-bindings-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-policy-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-common-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-dom-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-policy-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-wss4j-ws-security-stax-0:2.1.11-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.noarch", "6Server-JBEAP-7.1:eap7-xml-security-0:2.0.9-1.redhat_1.1.ep7.el6.src", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)", }, ], }
rhsa-2019_1326
Vulnerability from csaf_redhat
Published
2019-06-04 14:33
Modified
2024-11-22 10:33
Summary
Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R12 security and bug fix update
Notes
Topic
An update is now available for Red Hat JBoss Fuse 6.3 and Red Hat JBoss A-MQ 6.3.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Fuse provides a small-footprint, flexible, open source enterprise service bus and integration platform. Red Hat A-MQ is a standards compliant messaging system that is tailored for use in mission critical applications.
This patch is an update to Red Hat Fuse 6.3 and Red Hat A-MQ 6.3. It includes bug fixes, which are documented in the patch notes accompanying the package on the download page. See the download link given in the references section below.
Security fix(es):
* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat JBoss Fuse 6.3 and Red Hat JBoss A-MQ 6.3.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Fuse provides a small-footprint, flexible, open source enterprise service bus and integration platform. Red Hat A-MQ is a standards compliant messaging system that is tailored for use in mission critical applications.\n\nThis patch is an update to Red Hat Fuse 6.3 and Red Hat A-MQ 6.3. It includes bug fixes, which are documented in the patch notes accompanying the package on the download page. See the download link given in the references section below.\n\nSecurity fix(es):\n\n* infinispan: Unsafe deserialization of malicious object injected into data cache (CVE-2017-15089)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2019:1326", url: "https://access.redhat.com/errata/RHSA-2019:1326", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.amq.broker&downloadType=securityPatches&version=6.3.0", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.amq.broker&downloadType=securityPatches&version=6.3.0", }, { category: "external", summary: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.fuse&downloadType=securityPatches&version=6.3", url: "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=jboss.fuse&downloadType=securityPatches&version=6.3", }, { category: "external", summary: "1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_1326.json", }, ], title: "Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R12 security and bug fix update", tracking: { current_release_date: "2024-11-22T10:33:24+00:00", generator: { date: "2024-11-22T10:33:24+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2019:1326", initial_release_date: "2019-06-04T14:33:05+00:00", revision_history: [ { date: "2019-06-04T14:33:05+00:00", number: "1", summary: "Initial version", }, { date: "2019-06-04T14:33:05+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T10:33:24+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Fuse 6.3", product: { name: "Red Hat Fuse 6.3", product_id: "Red Hat Fuse 6.3", product_identification_helper: { cpe: "cpe:/a:redhat:jboss_amq:6.3", }, }, }, ], category: "product_family", name: "Red Hat JBoss Fuse", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { acknowledgments: [ { names: [ "Man Yue Mo", ], organization: "Semmle/lgtm.com", }, ], cve: "CVE-2017-15089", cwe: { id: "CWE-502", name: "Deserialization of Untrusted Data", }, discovery_date: "2017-10-16T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1503610", }, ], notes: [ { category: "description", text: "It was found that the Hotrod client in Infinispan would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", title: "Vulnerability description", }, { category: "summary", text: "infinispan: Unsafe deserialization of malicious object injected into data cache", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "Red Hat Fuse 6.3", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2017-15089", }, { category: "external", summary: "RHBZ#1503610", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1503610", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2017-15089", url: "https://www.cve.org/CVERecord?id=CVE-2017-15089", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, ], release_date: "2018-02-12T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2019-06-04T14:33:05+00:00", details: "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nInstallation instructions are located in the download section of the customer portal.\n\nThe References section of this erratum contains a download link (you must log in to download the update).", product_ids: [ "Red Hat Fuse 6.3", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2019:1326", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, products: [ "Red Hat Fuse 6.3", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "infinispan: Unsafe deserialization of malicious object injected into data cache", }, ], }
ghsa-46r5-59fg-2fjc
Vulnerability from github
Published
2022-05-14 00:59
Modified
2022-07-01 19:46
Severity ?
Summary
Deserialization of Untrusted Data in Infinispan
Details
It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.
{ affected: [ { database_specific: { last_known_affected_version_range: "<= 9.2.0.Beta2", }, package: { ecosystem: "Maven", name: "org.infinispan:infinispan-core", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "9.2.0.CR1", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2017-15089", ], database_specific: { cwe_ids: [ "CWE-502", ], github_reviewed: true, github_reviewed_at: "2022-07-01T19:46:46Z", nvd_published_at: "2018-02-15T17:29:00Z", severity: "HIGH", }, details: "It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", id: "GHSA-46r5-59fg-2fjc", modified: "2022-07-01T19:46:46Z", published: "2022-05-14T00:59:30Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-15089", }, { type: "WEB", url: "https://github.com/infinispan/infinispan/pull/5639", }, { type: "WEB", url: "https://github.com/infinispan/infinispan/commit/1deadcb1c74ea0337abd5382c0150b000f6b106f", }, { type: "WEB", url: "https://github.com/infinispan/infinispan/commit/2944b0d1369a230bde88392b222921537c99331e", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { type: "WEB", url: "https://access.redhat.com/errata/RHSA-2019:1326", }, { type: "PACKAGE", url: "https://github.com/infinispan/infinispan", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", type: "CVSS_V3", }, ], summary: "Deserialization of Untrusted Data in Infinispan", }
fkie_cve-2017-15089
Vulnerability from fkie_nvd
Published
2018-02-15 17:29
Modified
2024-11-21 03:14
Severity ?
Summary
It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| infinispan | infinispan | * | |
| infinispan | infinispan | 9.2.0 | |
| infinispan | infinispan | 9.2.0 | |
| infinispan | infinispan | 9.2.0 | |
| infinispan | infinispan | 9.2.0 | |
| infinispan | infinispan | 9.2.0 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:infinispan:infinispan:*:*:*:*:*:*:*:*", matchCriteriaId: "73C3E6FB-4EE2-4538-A190-3F680D9E7A3B", versionEndIncluding: "9.1.6", vulnerable: true, }, { criteria: "cpe:2.3:a:infinispan:infinispan:9.2.0:alpha1:*:*:*:*:*:*", matchCriteriaId: "6A2B14A3-8FAE-4C32-9E1A-F32D49E1EFAE", vulnerable: true, }, { criteria: "cpe:2.3:a:infinispan:infinispan:9.2.0:alpha2:*:*:*:*:*:*", matchCriteriaId: "35E90E01-47E7-44CB-A617-385AB0E6CB9F", vulnerable: true, }, { criteria: "cpe:2.3:a:infinispan:infinispan:9.2.0:beta1:*:*:*:*:*:*", matchCriteriaId: "FC00B1CC-C522-44FC-AB04-973D0E75C4E8", vulnerable: true, }, { criteria: "cpe:2.3:a:infinispan:infinispan:9.2.0:beta2:*:*:*:*:*:*", matchCriteriaId: "7248C01A-3848-4E22-AC9D-9D0E9D31EE80", vulnerable: true, }, { criteria: "cpe:2.3:a:infinispan:infinispan:9.2.0:cr1:*:*:*:*:*:*", matchCriteriaId: "3FDEC571-F826-4993-ABE3-3E94ECA684C5", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "It was found that the Hotrod client in Infinispan before 9.2.0.CR1 would unsafely read deserialized data on information from the cache. An authenticated attacker could inject a malicious object into the data cache and attain deserialization on the client, and possibly conduct further attacks.", }, { lang: "es", value: "Se ha descubierto que el cliente Hotrod en Infinispan, en versiones anteriores a la 9.2.0.CR1 lee de forma insegura los datos deserializados en la información de la caché. Un atacante autenticado podría inyectar un objeto malicioso en la caché de datos y lograr la deserialización en el cliente, además de llevar a cabo ataques a mayores.", }, ], id: "CVE-2017-15089", lastModified: "2024-11-21T03:14:02.923", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "PARTIAL", baseScore: 6.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:S/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 8, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 2.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2018-02-15T17:29:00.207", references: [ { source: "secalert@redhat.com", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securitytracker.com/id/1040360", }, { source: "secalert@redhat.com", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { source: "secalert@redhat.com", url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { source: "secalert@redhat.com", url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { source: "secalert@redhat.com", url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { source: "secalert@redhat.com", url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { source: "secalert@redhat.com", url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { source: "secalert@redhat.com", url: "https://access.redhat.com/errata/RHSA-2019:1326", }, { source: "secalert@redhat.com", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/infinispan/infinispan/pull/5639", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securitytracker.com/id/1040360", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://access.redhat.com/errata/RHSA-2018:0294", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://access.redhat.com/errata/RHSA-2018:0478", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://access.redhat.com/errata/RHSA-2018:0479", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://access.redhat.com/errata/RHSA-2018:0480", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://access.redhat.com/errata/RHSA-2018:0481", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://access.redhat.com/errata/RHSA-2018:0501", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://access.redhat.com/errata/RHSA-2019:1326", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://github.com/infinispan/infinispan/pull/5639", }, ], sourceIdentifier: "secalert@redhat.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-502", }, ], source: "secalert@redhat.com", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-502", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.