RHSA-2021:3656
- Source
- https://access.redhat.com/errata/RHSA-2021:3656
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2021:3656.json
- JSON Data
- https://api.osv.dev/v1/vulns/RHSA-2021:3656
- Related
- Published
- 2024-09-20T15:04:31Z
- Modified
- 2024-10-27T19:36:09Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
- Summary
- Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.1 security update on RHEL 7
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2021:3656
- https://access.redhat.com/security/updates/classification/#important
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/
- https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/
- https://bugzilla.redhat.com/show_bug.cgi?id=1937364
- https://bugzilla.redhat.com/show_bug.cgi?id=1937440
- https://bugzilla.redhat.com/show_bug.cgi?id=1944888
- https://bugzilla.redhat.com/show_bug.cgi?id=1948001
- https://bugzilla.redhat.com/show_bug.cgi?id=1948752
- https://bugzilla.redhat.com/show_bug.cgi?id=1965497
- https://bugzilla.redhat.com/show_bug.cgi?id=1970930
- https://bugzilla.redhat.com/show_bug.cgi?id=1976052
- https://bugzilla.redhat.com/show_bug.cgi?id=1981407
- https://bugzilla.redhat.com/show_bug.cgi?id=1991299
- https://issues.redhat.com/browse/JBEAP-18401
- https://issues.redhat.com/browse/JBEAP-21231
- https://issues.redhat.com/browse/JBEAP-21257
- https://issues.redhat.com/browse/JBEAP-21258
- https://issues.redhat.com/browse/JBEAP-21261
- https://issues.redhat.com/browse/JBEAP-21263
- https://issues.redhat.com/browse/JBEAP-21270
- https://issues.redhat.com/browse/JBEAP-21276
- https://issues.redhat.com/browse/JBEAP-21277
- https://issues.redhat.com/browse/JBEAP-21281
- https://issues.redhat.com/browse/JBEAP-21300
- https://issues.redhat.com/browse/JBEAP-21309
- https://issues.redhat.com/browse/JBEAP-21313
- https://issues.redhat.com/browse/JBEAP-21472
- https://issues.redhat.com/browse/JBEAP-21569
- https://issues.redhat.com/browse/JBEAP-21777
- https://issues.redhat.com/browse/JBEAP-21781
- https://issues.redhat.com/browse/JBEAP-21818
- https://issues.redhat.com/browse/JBEAP-21961
- https://issues.redhat.com/browse/JBEAP-21978
- https://issues.redhat.com/browse/JBEAP-22009
- https://issues.redhat.com/browse/JBEAP-22084
- https://issues.redhat.com/browse/JBEAP-22088
- https://issues.redhat.com/browse/JBEAP-22160
- https://issues.redhat.com/browse/JBEAP-22209
- https://issues.redhat.com/browse/JBEAP-22318
- https://issues.redhat.com/browse/JBEAP-22319
- https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_3656.json
- https://access.redhat.com/security/cve/CVE-2020-13936
- https://www.cve.org/CVERecord?id=CVE-2020-13936
- https://nvd.nist.gov/vuln/detail/CVE-2020-13936
- https://access.redhat.com/security/cve/CVE-2021-3536
- https://www.cve.org/CVERecord?id=CVE-2021-3536
- https://nvd.nist.gov/vuln/detail/CVE-2021-3536
- https://access.redhat.com/security/cve/CVE-2021-3597
- https://www.cve.org/CVERecord?id=CVE-2021-3597
- https://nvd.nist.gov/vuln/detail/CVE-2021-3597
- https://access.redhat.com/security/cve/CVE-2021-3642
- https://www.cve.org/CVERecord?id=CVE-2021-3642
- https://nvd.nist.gov/vuln/detail/CVE-2021-3642
- https://access.redhat.com/security/cve/CVE-2021-3644
- https://www.cve.org/CVERecord?id=CVE-2021-3644
- https://nvd.nist.gov/vuln/detail/CVE-2021-3644
- https://access.redhat.com/security/cve/CVE-2021-3690
- https://www.cve.org/CVERecord?id=CVE-2021-3690
- https://nvd.nist.gov/vuln/detail/CVE-2021-3690
- https://access.redhat.com/security/cve/CVE-2021-21295
- https://www.cve.org/CVERecord?id=CVE-2021-21295
- https://nvd.nist.gov/vuln/detail/CVE-2021-21295
- https://github.com/netty/netty/security/advisories/GHSA-wm47-8v5p-wjpj
- https://access.redhat.com/security/cve/CVE-2021-21409
- https://www.cve.org/CVERecord?id=CVE-2021-21409
- https://nvd.nist.gov/vuln/detail/CVE-2021-21409
- https://github.com/netty/netty/security/advisories/GHSA-f256-j965-7f32
- https://access.redhat.com/security/cve/CVE-2021-28170
- https://www.cve.org/CVERecord?id=CVE-2021-28170
- https://nvd.nist.gov/vuln/detail/CVE-2021-28170
- https://securitylab.github.com/advisories/GHSL-2020-021-jakarta-el/
- https://access.redhat.com/security/cve/CVE-2021-29425
- https://www.cve.org/CVERecord?id=CVE-2021-29425
- https://nvd.nist.gov/vuln/detail/CVE-2021-29425
Affected packages
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-velocity
Package
- Name
- eap7-velocity
- Purl
- pkg:rpm/redhat/eap7-velocity
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-velocity-engine-core
Package
- Name
- eap7-velocity-engine-core
- Purl
- pkg:rpm/redhat/eap7-velocity-engine-core
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-wildfly
Package
- Name
- eap7-wildfly
- Purl
- pkg:rpm/redhat/eap7-wildfly
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-wildfly-java-jdk11
Package
- Name
- eap7-wildfly-java-jdk11
- Purl
- pkg:rpm/redhat/eap7-wildfly-java-jdk11
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-wildfly-java-jdk8
Package
- Name
- eap7-wildfly-java-jdk8
- Purl
- pkg:rpm/redhat/eap7-wildfly-java-jdk8
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-wildfly-javadocs
Package
- Name
- eap7-wildfly-javadocs
- Purl
- pkg:rpm/redhat/eap7-wildfly-javadocs
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-wildfly-modules
Package
- Name
- eap7-wildfly-modules
- Purl
- pkg:rpm/redhat/eap7-wildfly-modules
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-undertow
Package
- Name
- eap7-undertow
- Purl
- pkg:rpm/redhat/eap7-undertow
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-wildfly-elytron
Package
- Name
- eap7-wildfly-elytron
- Purl
- pkg:rpm/redhat/eap7-wildfly-elytron
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-wildfly-elytron-tool
Package
- Name
- eap7-wildfly-elytron-tool
- Purl
- pkg:rpm/redhat/eap7-wildfly-elytron-tool
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-netty
Package
- Name
- eap7-netty
- Purl
- pkg:rpm/redhat/eap7-netty
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-netty-all
Package
- Name
- eap7-netty-all
- Purl
- pkg:rpm/redhat/eap7-netty-all
Red Hat:jboss_enterprise_application_platform:7.4::el7 / eap7-jakarta-el
Package
- Name
- eap7-jakarta-el
- Purl
- pkg:rpm/redhat/eap7-jakarta-el