{ "schema_version": "1.7.0", "id": "RHSA-2023:7637", "related": [ "GO-2023-2102" ], "upstream": [ "CVE-2023-2976", "CVE-2023-4503", "CVE-2023-5685", "CVE-2023-26048", "CVE-2023-26049", "CVE-2023-35887", "CVE-2023-39410", "CVE-2023-44487" ], "published": "2024-09-30T15:48:00Z", "modified": "2026-03-13T10:04:49Z", "summary": "Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.14 on RHEL 7 security update", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "affected": [ { "package": { "name": "eap7-guava", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-guava" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:32.1.1-2.jre_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-guava-libraries", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-guava-libraries" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:32.1.1-2.jre_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-undertow", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-undertow" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.2.28-1.SP1_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-wildfly", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-wildfly" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.4.14-5.GA_redhat_00002.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-wildfly-java-jdk11", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk11" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.4.14-5.GA_redhat_00002.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-wildfly-java-jdk8", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-wildfly-java-jdk8" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.4.14-5.GA_redhat_00002.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-wildfly-javadocs", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-wildfly-javadocs" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.4.14-5.GA_redhat_00002.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-wildfly-modules", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-wildfly-modules" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:7.4.14-5.GA_redhat_00002.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-jboss-xnio-base", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-jboss-xnio-base" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:3.8.11-1.SP1_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-cli", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-cli" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-commons", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-commons" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-core-client", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-core-client" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-dto", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-dto" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-hornetq-protocol", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-hornetq-protocol" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-hqclient-protocol", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-hqclient-protocol" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-jdbc-store", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-jdbc-store" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-jms-client", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-jms-client" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-jms-server", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-jms-server" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-journal", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-journal" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-ra", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-ra" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-selector", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-selector" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-server", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-server" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-service-extensions", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-service-extensions" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-activemq-artemis-tools", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-activemq-artemis-tools" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.16.0-17.redhat_00051.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-apache-sshd", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-apache-sshd" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.9.3-1.redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-avro", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-avro" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.11.3-1.redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-hal-console", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-hal-console" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:3.3.20-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-hibernate", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-hibernate" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:5.3.32-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-hibernate-core", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-hibernate-core" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:5.3.32-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-hibernate-entitymanager", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-hibernate-entitymanager" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:5.3.32-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-hibernate-envers", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-hibernate-envers" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:5.3.32-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-hibernate-java8", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-hibernate-java8" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:5.3.32-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-infinispan", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-infinispan" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:11.0.18-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-infinispan-cachestore-jdbc", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-infinispan-cachestore-jdbc" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:11.0.18-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-infinispan-cachestore-remote", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-infinispan-cachestore-remote" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:11.0.18-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-infinispan-client-hotrod", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-infinispan-client-hotrod" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:11.0.18-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-infinispan-commons", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-infinispan-commons" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:11.0.18-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-infinispan-component-annotations", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-infinispan-component-annotations" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:11.0.18-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-infinispan-core", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-infinispan-core" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:11.0.18-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-infinispan-hibernate-cache-commons", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-infinispan-hibernate-cache-commons" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:11.0.18-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-infinispan-hibernate-cache-spi", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-infinispan-hibernate-cache-spi" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:11.0.18-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-infinispan-hibernate-cache-v53", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-infinispan-hibernate-cache-v53" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:11.0.18-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-jandex", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-jandex" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.4.4-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-jboss-jsp-api_2.3_spec", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-jboss-jsp-api_2.3_spec" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.0.1-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-jboss-marshalling", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-jboss-marshalling" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.0.14-1.SP1_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-jboss-marshalling-river", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-jboss-marshalling-river" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.0.14-1.SP1_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-jboss-server-migration", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-jboss-server-migration" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.10.0-33.Final_redhat_00032.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-jboss-server-migration-cli", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-cli" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.10.0-33.Final_redhat_00032.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-jboss-server-migration-core", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-jboss-server-migration-core" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.10.0-33.Final_redhat_00032.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-jbossws-cxf", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-jbossws-cxf" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:5.4.9-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-jgroups", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-jgroups" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:4.2.23-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-weld-core", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-weld-core" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:3.1.10-2.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-weld-core-impl", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-weld-core-impl" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:3.1.10-2.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-weld-core-jsf", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-weld-core-jsf" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:3.1.10-2.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-weld-ejb", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-weld-ejb" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:3.1.10-2.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-weld-jta", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-weld-jta" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:3.1.10-2.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-weld-probe-core", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-weld-probe-core" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:3.1.10-2.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-weld-web", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-weld-web" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:3.1.10-2.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-wildfly-transaction-client", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-wildfly-transaction-client" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.1.16-1.Final_redhat_00001.1.el7eap" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "eap7-yasson", "ecosystem": "Red Hat:jboss_enterprise_application_platform:7.4::el7", "purl": "pkg:rpm/redhat/eap7-yasson" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:1.0.11-4.redhat_00002.1.el7eap" } ], "type": "ECOSYSTEM" } ] } ], "references": [ { "type": "ADVISORY", "url": "https://access.redhat.com/errata/RHSA-2023:7637" }, { "type": "ARTICLE", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "type": "ARTICLE", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003" }, { "type": "ARTICLE", "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/" }, { "type": "ARTICLE", "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184751" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215229" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236340" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2236341" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2240036" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242521" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25004" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25085" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25086" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25378" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25380" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25419" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25451" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25457" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25541" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25547" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25576" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25594" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25627" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25657" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25685" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25700" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25716" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25726" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25772" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25779" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25803" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-25838" }, { "type": "ARTICLE", "url": "https://issues.redhat.com/browse/JBEAP-26041" }, { "type": "ADVISORY", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_7637.json" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-2976" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-2976" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2976" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-4503" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-4503" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4503" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-5685" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241822" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-5685" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5685" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-26048" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-26048" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26048" }, { "type": "ARTICLE", "url": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-qw69-rqj8-6qw8" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-26049" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-26049" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26049" }, { "type": "ARTICLE", "url": "https://github.com/eclipse/jetty.project/security/advisories/GHSA-p26g-97m4-6q7c" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-35887" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-35887" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-35887" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-39410" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-39410" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39410" }, { "type": "ARTICLE", "url": "https://issues.apache.org/jira/browse/AVRO-3819" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2023-44487" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2023-44487" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487" }, { "type": "ARTICLE", "url": "https://github.com/dotnet/announcements/issues/277" }, { "type": "ADVISORY", "url": "https://pkg.go.dev/vuln/GO-2023-2102" }, { "type": "ARTICLE", "url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487" }, { "type": "ARTICLE", "url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/" }, { "type": "ARTICLE", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ] }