{ "schema_version": "1.7.0", "id": "RHSA-2014:0835", "related": [], "upstream": [ "CVE-2014-0075", "CVE-2014-0096", "CVE-2014-0099" ], "published": "2024-09-15T21:33:04Z", "modified": "2026-01-29T10:06:20Z", "summary": "Red Hat Security Advisory: Red Hat JBoss Web Server 2.0.1 tomcat7 security update", "affected": [ { "package": { "name": "tomcat7", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el5", "purl": "pkg:rpm/redhat/tomcat7" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-14_patch_03.ep6.el5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-admin-webapps", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el5", "purl": "pkg:rpm/redhat/tomcat7-admin-webapps" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-14_patch_03.ep6.el5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-docs-webapp", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el5", "purl": "pkg:rpm/redhat/tomcat7-docs-webapp" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-14_patch_03.ep6.el5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-el-2.2-api", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el5", "purl": "pkg:rpm/redhat/tomcat7-el-2.2-api" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-14_patch_03.ep6.el5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-javadoc", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el5", "purl": "pkg:rpm/redhat/tomcat7-javadoc" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-14_patch_03.ep6.el5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-jsp-2.2-api", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el5", "purl": "pkg:rpm/redhat/tomcat7-jsp-2.2-api" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-14_patch_03.ep6.el5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-lib", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el5", "purl": "pkg:rpm/redhat/tomcat7-lib" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-14_patch_03.ep6.el5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-log4j", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el5", "purl": "pkg:rpm/redhat/tomcat7-log4j" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-14_patch_03.ep6.el5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-servlet-3.0-api", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el5", "purl": "pkg:rpm/redhat/tomcat7-servlet-3.0-api" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-14_patch_03.ep6.el5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-webapps", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el5", "purl": "pkg:rpm/redhat/tomcat7-webapps" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-14_patch_03.ep6.el5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el6", "purl": "pkg:rpm/redhat/tomcat7" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-11_patch_03.ep6.el6" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-admin-webapps", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el6", "purl": "pkg:rpm/redhat/tomcat7-admin-webapps" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-11_patch_03.ep6.el6" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-docs-webapp", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el6", "purl": "pkg:rpm/redhat/tomcat7-docs-webapp" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-11_patch_03.ep6.el6" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-el-2.2-api", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el6", "purl": "pkg:rpm/redhat/tomcat7-el-2.2-api" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-11_patch_03.ep6.el6" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-javadoc", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el6", "purl": "pkg:rpm/redhat/tomcat7-javadoc" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-11_patch_03.ep6.el6" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-jsp-2.2-api", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el6", "purl": "pkg:rpm/redhat/tomcat7-jsp-2.2-api" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-11_patch_03.ep6.el6" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-lib", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el6", "purl": "pkg:rpm/redhat/tomcat7-lib" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-11_patch_03.ep6.el6" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-log4j", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el6", "purl": "pkg:rpm/redhat/tomcat7-log4j" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-11_patch_03.ep6.el6" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-servlet-3.0-api", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el6", "purl": "pkg:rpm/redhat/tomcat7-servlet-3.0-api" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-11_patch_03.ep6.el6" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "tomcat7-webapps", "ecosystem": "Red Hat:jboss_enterprise_web_server:2::el6", "purl": "pkg:rpm/redhat/tomcat7-webapps" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.0.40-11_patch_03.ep6.el6" } ], "type": "ECOSYSTEM" } ] } ], "references": [ { "type": "ADVISORY", "url": "https://access.redhat.com/errata/RHSA-2014:0835" }, { "type": "ARTICLE", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1072776" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1088342" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1102030" }, { "type": "ADVISORY", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0835.json" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2014-0075" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0075" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0075" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2014-0096" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0096" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0096" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2014-0099" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2014-0099" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0099" } ] }