Vulnerability Database
Blog
FAQ
Docs
RHSA-2017:2809
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2017:2809
Import Source
https://security.access.redhat.com/data/osv/RHSA-2017:2809.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2017:2809
Related
CVE-2014-9970
CVE-2015-6644
CVE-2017-2582
CVE-2017-5645
CVE-2017-7536
Published
2024-09-29T17:11:14Z
Modified
2024-10-27T17:55:36Z
Severity
8.1 (High)
CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform security update
Details
References
https://access.redhat.com/errata/RHSA-2017:2809
https://access.redhat.com/security/updates/classification/#important
https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/version-7.0/
https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform/version-7.0/installation-guide/
https://bugzilla.redhat.com/show_bug.cgi?id=1410481
https://bugzilla.redhat.com/show_bug.cgi?id=1443635
https://bugzilla.redhat.com/show_bug.cgi?id=1444015
https://bugzilla.redhat.com/show_bug.cgi?id=1455566
https://bugzilla.redhat.com/show_bug.cgi?id=1465573
https://issues.redhat.com/browse/JBEAP-11484
https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2809.json
https://access.redhat.com/security/cve/CVE-2014-9970
https://www.cve.org/CVERecord?id=CVE-2014-9970
https://nvd.nist.gov/vuln/detail/CVE-2014-9970
https://access.redhat.com/security/cve/CVE-2015-6644
https://www.cve.org/CVERecord?id=CVE-2015-6644
https://nvd.nist.gov/vuln/detail/CVE-2015-6644
https://access.redhat.com/security/cve/CVE-2017-2582
https://www.cve.org/CVERecord?id=CVE-2017-2582
https://nvd.nist.gov/vuln/detail/CVE-2017-2582
https://access.redhat.com/security/cve/CVE-2017-5645
https://www.cve.org/CVERecord?id=CVE-2017-5645
https://nvd.nist.gov/vuln/detail/CVE-2017-5645
https://access.redhat.com/security/cve/CVE-2017-7536
https://www.cve.org/CVERecord?id=CVE-2017-7536
https://nvd.nist.gov/vuln/detail/CVE-2017-7536
Affected packages
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-artemis-native
Package
Name
eap7-artemis-native
Purl
pkg:rpm/redhat/eap7-artemis-native
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.1.0-13.redhat_4.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-artemis-native-wildfly
Package
Name
eap7-artemis-native-wildfly
Purl
pkg:rpm/redhat/eap7-artemis-native-wildfly
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.1.0-13.redhat_4.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-bouncycastle
Package
Name
eap7-bouncycastle
Purl
pkg:rpm/redhat/eap7-bouncycastle
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.56.0-3.redhat_2.2.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-bouncycastle-mail
Package
Name
eap7-bouncycastle-mail
Purl
pkg:rpm/redhat/eap7-bouncycastle-mail
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.56.0-3.redhat_2.2.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-bouncycastle-pkix
Package
Name
eap7-bouncycastle-pkix
Purl
pkg:rpm/redhat/eap7-bouncycastle-pkix
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.56.0-3.redhat_2.2.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-bouncycastle-prov
Package
Name
eap7-bouncycastle-prov
Purl
pkg:rpm/redhat/eap7-bouncycastle-prov
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.56.0-3.redhat_2.2.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-hibernate-validator
Package
Name
eap7-hibernate-validator
Purl
pkg:rpm/redhat/eap7-hibernate-validator
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:5.2.5-2.Final_redhat_2.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-hibernate-validator-cdi
Package
Name
eap7-hibernate-validator-cdi
Purl
pkg:rpm/redhat/eap7-hibernate-validator-cdi
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:5.2.5-2.Final_redhat_2.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jasypt
Package
Name
eap7-jasypt
Purl
pkg:rpm/redhat/eap7-jasypt
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.9.2-2.redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jboss-jms-api_2.0_spec
Package
Name
eap7-jboss-jms-api_2.0_spec
Purl
pkg:rpm/redhat/eap7-jboss-jms-api_2.0_spec
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.0.1-2.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jboss-logmanager
Package
Name
eap7-jboss-logmanager
Purl
pkg:rpm/redhat/eap7-jboss-logmanager
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.0.7-2.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jboss-metadata
Package
Name
eap7-jboss-metadata
Purl
pkg:rpm/redhat/eap7-jboss-metadata
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:10.0.2-2.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jboss-metadata-appclient
Package
Name
eap7-jboss-metadata-appclient
Purl
pkg:rpm/redhat/eap7-jboss-metadata-appclient
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:10.0.2-2.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jboss-metadata-common
Package
Name
eap7-jboss-metadata-common
Purl
pkg:rpm/redhat/eap7-jboss-metadata-common
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:10.0.2-2.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jboss-metadata-ear
Package
Name
eap7-jboss-metadata-ear
Purl
pkg:rpm/redhat/eap7-jboss-metadata-ear
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:10.0.2-2.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jboss-metadata-ejb
Package
Name
eap7-jboss-metadata-ejb
Purl
pkg:rpm/redhat/eap7-jboss-metadata-ejb
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:10.0.2-2.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jboss-metadata-web
Package
Name
eap7-jboss-metadata-web
Purl
pkg:rpm/redhat/eap7-jboss-metadata-web
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:10.0.2-2.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jboss-remote-naming
Package
Name
eap7-jboss-remote-naming
Purl
pkg:rpm/redhat/eap7-jboss-remote-naming
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.0.5-1.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-jboss-remoting
Package
Name
eap7-jboss-remoting
Purl
pkg:rpm/redhat/eap7-jboss-remoting
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.0.24-1.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-log4j-jboss-logmanager
Package
Name
eap7-log4j-jboss-logmanager
Purl
pkg:rpm/redhat/eap7-log4j-jboss-logmanager
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.1.4-2.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-picketlink-api
Package
Name
eap7-picketlink-api
Purl
pkg:rpm/redhat/eap7-picketlink-api
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.5.5-9.SP8_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-picketlink-bindings
Package
Name
eap7-picketlink-bindings
Purl
pkg:rpm/redhat/eap7-picketlink-bindings
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.5.5-9.SP8_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-picketlink-common
Package
Name
eap7-picketlink-common
Purl
pkg:rpm/redhat/eap7-picketlink-common
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.5.5-9.SP8_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-picketlink-config
Package
Name
eap7-picketlink-config
Purl
pkg:rpm/redhat/eap7-picketlink-config
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.5.5-9.SP8_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-picketlink-federation
Package
Name
eap7-picketlink-federation
Purl
pkg:rpm/redhat/eap7-picketlink-federation
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.5.5-9.SP8_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-picketlink-idm-api
Package
Name
eap7-picketlink-idm-api
Purl
pkg:rpm/redhat/eap7-picketlink-idm-api
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.5.5-9.SP8_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-picketlink-idm-impl
Package
Name
eap7-picketlink-idm-impl
Purl
pkg:rpm/redhat/eap7-picketlink-idm-impl
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.5.5-9.SP8_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-picketlink-idm-simple-schema
Package
Name
eap7-picketlink-idm-simple-schema
Purl
pkg:rpm/redhat/eap7-picketlink-idm-simple-schema
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.5.5-9.SP8_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-picketlink-impl
Package
Name
eap7-picketlink-impl
Purl
pkg:rpm/redhat/eap7-picketlink-impl
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.5.5-9.SP8_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-picketlink-wildfly8
Package
Name
eap7-picketlink-wildfly8
Purl
pkg:rpm/redhat/eap7-picketlink-wildfly8
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.5.5-9.SP8_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-undertow
Package
Name
eap7-undertow
Purl
pkg:rpm/redhat/eap7-undertow
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.3.31-1.Final_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-wildfly
Package
Name
eap7-wildfly
Purl
pkg:rpm/redhat/eap7-wildfly
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.8-4.GA_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-wildfly-javadocs
Package
Name
eap7-wildfly-javadocs
Purl
pkg:rpm/redhat/eap7-wildfly-javadocs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.8-1.GA_redhat_1.1.ep7.el6
Red Hat:jboss_enterprise_application_platform:7::el6
/
eap7-wildfly-modules
Package
Name
eap7-wildfly-modules
Purl
pkg:rpm/redhat/eap7-wildfly-modules
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.8-4.GA_redhat_1.1.ep7.el6
RHSA-2017:2809 - OSV