CVE-2018-14642: Infoleak
First published: Thu Sep 13 2018(Updated: )
An information leak vulnerability was found in Undertow. If all headers are not written out in the first write() call then the code that handles flushing the buffer will always write out the full contents of the writevBuffer buffer, which may contain data from previous requests.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/eap7-activemq-artemis | <0:1.5.5.015-1.redhat_00001.1.ep7.el6 | 0:1.5.5.015-1.redhat_00001.1.ep7.el6 |
| redhat/eap7-apache-cxf | <0:3.1.16-2.redhat_2.1.ep7.el6 | 0:3.1.16-2.redhat_2.1.ep7.el6 |
| redhat/eap7-dom4j | <0:2.1.1-1.redhat_00001.1.ep7.el6 | 0:2.1.1-1.redhat_00001.1.ep7.el6 |
| redhat/eap7-hibernate | <0:5.1.17-1.Final_redhat_00001.1.ep7.el6 | 0:5.1.17-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-ironjacamar | <0:1.4.12-1.Final_redhat_00001.1.ep7.el6 | 0:1.4.12-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-jackson-databind | <0:2.8.11.3-1.redhat_00001.1.ep7.el6 | 0:2.8.11.3-1.redhat_00001.1.ep7.el6 |
| redhat/eap7-jandex | <0:2.0.5-1.Final_redhat_1.1.ep7.el6 | 0:2.0.5-1.Final_redhat_1.1.ep7.el6 |
| redhat/eap7-jberet | <0:1.2.7-1.Final_redhat_00001.1.ep7.el6 | 0:1.2.7-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-jboss-ejb-client | <0:4.0.12-1.Final_redhat_00001.1.ep7.el6 | 0:4.0.12-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-jboss-logmanager | <0:2.0.11-1.Final_redhat_00001.1.ep7.el6 | 0:2.0.11-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-jboss-modules | <0:1.6.7-1.Final_redhat_00001.1.ep7.el6 | 0:1.6.7-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-jboss-security-negotiation | <0:3.0.5-1.Final_redhat_00001.1.ep7.el6 | 0:3.0.5-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-jbossws-common | <0:3.1.7-1.Final_redhat_00001.1.ep7.el6 | 0:3.1.7-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-narayana | <0:5.5.34-1.Final_redhat_00001.1.ep7.el6 | 0:5.5.34-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-picketlink-bindings | <0:2.5.5-15.SP12_redhat_3.1.ep7.el6 | 0:2.5.5-15.SP12_redhat_3.1.ep7.el6 |
| redhat/eap7-picketlink-federation | <0:2.5.5-15.SP12_redhat_3.1.ep7.el6 | 0:2.5.5-15.SP12_redhat_3.1.ep7.el6 |
| redhat/eap7-undertow | <0:1.4.18-10.SP11_redhat_00001.1.ep7.el6 | 0:1.4.18-10.SP11_redhat_00001.1.ep7.el6 |
| redhat/eap7-undertow-jastow | <0:2.0.7-1.Final_redhat_00001.1.ep7.el6 | 0:2.0.7-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-wildfly | <0:7.1.6-4.GA_redhat_00002.1.ep7.el6 | 0:7.1.6-4.GA_redhat_00002.1.ep7.el6 |
| redhat/eap7-wildfly-common | <0:1.2.1-1.Final_redhat_00001.1.ep7.el6 | 0:1.2.1-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-wildfly-elytron | <0:1.1.12-1.Final_redhat_00001.1.ep7.el6 | 0:1.1.12-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-wildfly-elytron-tool | <0:1.0.9-1.Final_redhat_00001.1.ep7.el6 | 0:1.0.9-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-wildfly-javadocs | <0:7.1.6-2.GA_redhat_00002.1.ep7.el6 | 0:7.1.6-2.GA_redhat_00002.1.ep7.el6 |
| redhat/eap7-wildfly-web-console-eap | <0:2.9.19-1.Final_redhat_00001.1.ep7.el6 | 0:2.9.19-1.Final_redhat_00001.1.ep7.el6 |
| redhat/eap7-activemq-artemis | <0:1.5.5.015-1.redhat_00001.1.ep7.el7 | 0:1.5.5.015-1.redhat_00001.1.ep7.el7 |
| redhat/eap7-apache-cxf | <0:3.1.16-2.redhat_2.1.ep7.el7 | 0:3.1.16-2.redhat_2.1.ep7.el7 |
| redhat/eap7-dom4j | <0:2.1.1-1.redhat_00001.1.ep7.el7 | 0:2.1.1-1.redhat_00001.1.ep7.el7 |
| redhat/eap7-hibernate | <0:5.1.17-1.Final_redhat_00001.1.ep7.el7 | 0:5.1.17-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-ironjacamar | <0:1.4.12-1.Final_redhat_00001.1.ep7.el7 | 0:1.4.12-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-jackson-databind | <0:2.8.11.3-1.redhat_00001.1.ep7.el7 | 0:2.8.11.3-1.redhat_00001.1.ep7.el7 |
| redhat/eap7-jandex | <0:2.0.5-1.Final_redhat_1.1.ep7.el7 | 0:2.0.5-1.Final_redhat_1.1.ep7.el7 |
| redhat/eap7-jberet | <0:1.2.7-1.Final_redhat_00001.1.ep7.el7 | 0:1.2.7-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-jboss-ejb-client | <0:4.0.12-1.Final_redhat_00001.1.ep7.el7 | 0:4.0.12-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-jboss-logmanager | <0:2.0.11-1.Final_redhat_00001.1.ep7.el7 | 0:2.0.11-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-jboss-modules | <0:1.6.7-1.Final_redhat_00001.1.ep7.el7 | 0:1.6.7-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-jboss-security-negotiation | <0:3.0.5-1.Final_redhat_00001.1.ep7.el7 | 0:3.0.5-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-jbossws-common | <0:3.1.7-1.Final_redhat_00001.1.ep7.el7 | 0:3.1.7-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-narayana | <0:5.5.34-1.Final_redhat_00001.1.ep7.el7 | 0:5.5.34-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-picketlink-bindings | <0:2.5.5-15.SP12_redhat_3.1.ep7.el7 | 0:2.5.5-15.SP12_redhat_3.1.ep7.el7 |
| redhat/eap7-picketlink-federation | <0:2.5.5-15.SP12_redhat_3.1.ep7.el7 | 0:2.5.5-15.SP12_redhat_3.1.ep7.el7 |
| redhat/eap7-undertow | <0:1.4.18-10.SP11_redhat_00001.1.ep7.el7 | 0:1.4.18-10.SP11_redhat_00001.1.ep7.el7 |
| redhat/eap7-undertow-jastow | <0:2.0.7-1.Final_redhat_00001.1.ep7.el7 | 0:2.0.7-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-wildfly | <0:7.1.6-4.GA_redhat_00002.1.ep7.el7 | 0:7.1.6-4.GA_redhat_00002.1.ep7.el7 |
| redhat/eap7-wildfly-common | <0:1.2.1-1.Final_redhat_00001.1.ep7.el7 | 0:1.2.1-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-wildfly-elytron | <0:1.1.12-1.Final_redhat_00001.1.ep7.el7 | 0:1.1.12-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-wildfly-elytron-tool | <0:1.0.9-1.Final_redhat_00001.1.ep7.el7 | 0:1.0.9-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-wildfly-javadocs | <0:7.1.6-2.GA_redhat_00002.1.ep7.el7 | 0:7.1.6-2.GA_redhat_00002.1.ep7.el7 |
| redhat/eap7-wildfly-web-console-eap | <0:2.9.19-1.Final_redhat_00001.1.ep7.el7 | 0:2.9.19-1.Final_redhat_00001.1.ep7.el7 |
| redhat/eap7-activemq-artemis | <0:2.6.3-5.redhat_00020.1.el6ea | 0:2.6.3-5.redhat_00020.1.el6ea |
| redhat/eap7-apache-commons-lang | <0:3.8.0-1.redhat_00001.1.el6ea | 0:3.8.0-1.redhat_00001.1.el6ea |
| redhat/eap7-apache-cxf | <0:3.2.7-1.redhat_00001.1.el6ea | 0:3.2.7-1.redhat_00001.1.el6ea |
| redhat/eap7-apache-cxf-xjc-utils | <0:3.2.3-2.redhat_00002.1.el6ea | 0:3.2.3-2.redhat_00002.1.el6ea |
| redhat/eap7-artemis-native | <0:2.6.3-15.redhat_00020.el6ea | 0:2.6.3-15.redhat_00020.el6ea |
| redhat/eap7-byte-buddy | <0:1.9.5-1.redhat_00001.1.el6ea | 0:1.9.5-1.redhat_00001.1.el6ea |
| redhat/eap7-dom4j | <0:2.1.1-2.redhat_00001.1.el6ea | 0:2.1.1-2.redhat_00001.1.el6ea |
| redhat/eap7-elytron-web | <0:1.2.4-1.Final_redhat_00001.1.el6ea | 0:1.2.4-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-hibernate | <0:5.3.9-2.Final_redhat_00002.1.el6ea | 0:5.3.9-2.Final_redhat_00002.1.el6ea |
| redhat/eap7-httpcomponents-asyncclient | <0:4.1.4-1.redhat_00001.1.el6ea | 0:4.1.4-1.redhat_00001.1.el6ea |
| redhat/eap7-infinispan | <0:9.3.6-1.Final_redhat_00001.1.el6ea | 0:9.3.6-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-ironjacamar | <0:1.4.15-1.Final_redhat_00001.1.el6ea | 0:1.4.15-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-jackson-annotations | <0:2.9.8-2.redhat_00004.1.el6ea | 0:2.9.8-2.redhat_00004.1.el6ea |
| redhat/eap7-jackson-core | <0:2.9.8-2.redhat_00004.1.el6ea | 0:2.9.8-2.redhat_00004.1.el6ea |
| redhat/eap7-jackson-databind | <0:2.9.8-2.redhat_00004.1.el6ea | 0:2.9.8-2.redhat_00004.1.el6ea |
| redhat/eap7-jackson-jaxrs-providers | <0:2.9.8-2.redhat_00004.1.el6ea | 0:2.9.8-2.redhat_00004.1.el6ea |
| redhat/eap7-jackson-modules-base | <0:2.9.8-1.redhat_00004.1.el6ea | 0:2.9.8-1.redhat_00004.1.el6ea |
| redhat/eap7-jackson-modules-java8 | <0:2.9.8-1.redhat_00004.1.el6ea | 0:2.9.8-1.redhat_00004.1.el6ea |
| redhat/eap7-jberet | <0:1.3.2-1.Final_redhat_00001.1.el6ea | 0:1.3.2-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-jboss-ejb-client | <0:4.0.15-1.Final_redhat_00001.1.el6ea | 0:4.0.15-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-jboss-genericjms | <0:2.0.1-2.Final_redhat_00002.1.el6ea | 0:2.0.1-2.Final_redhat_00002.1.el6ea |
| redhat/eap7-jboss-logmanager | <0:2.1.7-3.Final_redhat_00001.1.el6ea | 0:2.1.7-3.Final_redhat_00001.1.el6ea |
| redhat/eap7-jboss-remoting-jmx | <0:3.0.1-1.Final_redhat_00001.1.el6ea | 0:3.0.1-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-jboss-security-negotiation | <0:3.0.5-2.Final_redhat_00001.1.el6ea | 0:3.0.5-2.Final_redhat_00001.1.el6ea |
| redhat/eap7-jboss-server-migration | <0:1.3.0-7.Final_redhat_00004.1.el6ea | 0:1.3.0-7.Final_redhat_00004.1.el6ea |
| redhat/eap7-narayana | <0:5.9.1-1.Final_redhat_00001.1.el6ea | 0:5.9.1-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-picketlink-bindings | <0:2.5.5-16.SP12_redhat_4.1.el6ea | 0:2.5.5-16.SP12_redhat_4.1.el6ea |
| redhat/eap7-picketlink-federation | <0:2.5.5-16.SP12_redhat_4.1.el6ea | 0:2.5.5-16.SP12_redhat_4.1.el6ea |
| redhat/eap7-resteasy | <0:3.6.1-4.SP3_redhat_00001.1.el6ea | 0:3.6.1-4.SP3_redhat_00001.1.el6ea |
| redhat/eap7-sun-istack-commons | <0:3.0.7-2.redhat_00001.1.el6ea | 0:3.0.7-2.redhat_00001.1.el6ea |
| redhat/eap7-undertow | <0:2.0.19-1.Final_redhat_00001.1.el6ea | 0:2.0.19-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-undertow-jastow | <0:2.0.7-2.Final_redhat_00001.1.el6ea | 0:2.0.7-2.Final_redhat_00001.1.el6ea |
| redhat/eap7-wildfly | <0:7.2.1-6.GA_redhat_00004.1.el6ea | 0:7.2.1-6.GA_redhat_00004.1.el6ea |
| redhat/eap7-wildfly-elytron | <0:1.6.2-1.Final_redhat_00001.1.el6ea | 0:1.6.2-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-wildfly-elytron-tool | <0:1.4.1-1.Final_redhat_00001.1.el6ea | 0:1.4.1-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-wildfly-http-client | <0:1.0.13-1.Final_redhat_00001.1.el6ea | 0:1.0.13-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-wildfly-transaction-client | <0:1.1.3-1.Final_redhat_00001.1.el6ea | 0:1.1.3-1.Final_redhat_00001.1.el6ea |
| redhat/eap7-yasson | <0:1.0.2-1.redhat_00001.1.el6ea | 0:1.0.2-1.redhat_00001.1.el6ea |
| redhat/eap7-activemq-artemis | <0:2.6.3-5.redhat_00020.1.el7ea | 0:2.6.3-5.redhat_00020.1.el7ea |
| redhat/eap7-apache-commons-lang | <0:3.8.0-1.redhat_00001.1.el7ea | 0:3.8.0-1.redhat_00001.1.el7ea |
| redhat/eap7-apache-cxf | <0:3.2.7-1.redhat_00001.1.el7ea | 0:3.2.7-1.redhat_00001.1.el7ea |
| redhat/eap7-apache-cxf-xjc-utils | <0:3.2.3-2.redhat_00002.1.el7ea | 0:3.2.3-2.redhat_00002.1.el7ea |
| redhat/eap7-artemis-native | <0:2.6.3-15.redhat_00020.el7ea | 0:2.6.3-15.redhat_00020.el7ea |
| redhat/eap7-byte-buddy | <0:1.9.5-1.redhat_00001.1.el7ea | 0:1.9.5-1.redhat_00001.1.el7ea |
| redhat/eap7-dom4j | <0:2.1.1-2.redhat_00001.1.el7ea | 0:2.1.1-2.redhat_00001.1.el7ea |
| redhat/eap7-elytron-web | <0:1.2.4-1.Final_redhat_00001.1.el7ea | 0:1.2.4-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-hibernate | <0:5.3.9-2.Final_redhat_00002.1.el7ea | 0:5.3.9-2.Final_redhat_00002.1.el7ea |
| redhat/eap7-httpcomponents-asyncclient | <0:4.1.4-1.redhat_00001.1.el7ea | 0:4.1.4-1.redhat_00001.1.el7ea |
| redhat/eap7-infinispan | <0:9.3.6-1.Final_redhat_00001.1.el7ea | 0:9.3.6-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-ironjacamar | <0:1.4.15-1.Final_redhat_00001.1.el7ea | 0:1.4.15-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-jackson-annotations | <0:2.9.8-2.redhat_00004.1.el7ea | 0:2.9.8-2.redhat_00004.1.el7ea |
| redhat/eap7-jackson-core | <0:2.9.8-2.redhat_00004.1.el7ea | 0:2.9.8-2.redhat_00004.1.el7ea |
| redhat/eap7-jackson-databind | <0:2.9.8-2.redhat_00004.1.el7ea | 0:2.9.8-2.redhat_00004.1.el7ea |
| redhat/eap7-jackson-jaxrs-providers | <0:2.9.8-2.redhat_00004.1.el7ea | 0:2.9.8-2.redhat_00004.1.el7ea |
| redhat/eap7-jackson-modules-base | <0:2.9.8-1.redhat_00004.1.el7ea | 0:2.9.8-1.redhat_00004.1.el7ea |
| redhat/eap7-jackson-modules-java8 | <0:2.9.8-1.redhat_00004.1.el7ea | 0:2.9.8-1.redhat_00004.1.el7ea |
| redhat/eap7-jberet | <0:1.3.2-1.Final_redhat_00001.1.el7ea | 0:1.3.2-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-jboss-ejb-client | <0:4.0.15-1.Final_redhat_00001.1.el7ea | 0:4.0.15-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-jboss-genericjms | <0:2.0.1-2.Final_redhat_00002.1.el7ea | 0:2.0.1-2.Final_redhat_00002.1.el7ea |
| redhat/eap7-jboss-logmanager | <0:2.1.7-3.Final_redhat_00001.1.el7ea | 0:2.1.7-3.Final_redhat_00001.1.el7ea |
| redhat/eap7-jboss-remoting-jmx | <0:3.0.1-1.Final_redhat_00001.1.el7ea | 0:3.0.1-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-jboss-security-negotiation | <0:3.0.5-2.Final_redhat_00001.1.el7ea | 0:3.0.5-2.Final_redhat_00001.1.el7ea |
| redhat/eap7-jboss-server-migration | <0:1.3.0-7.Final_redhat_00004.1.el7ea | 0:1.3.0-7.Final_redhat_00004.1.el7ea |
| redhat/eap7-narayana | <0:5.9.1-1.Final_redhat_00001.1.el7ea | 0:5.9.1-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-picketlink-bindings | <0:2.5.5-16.SP12_redhat_4.1.el7ea | 0:2.5.5-16.SP12_redhat_4.1.el7ea |
| redhat/eap7-picketlink-federation | <0:2.5.5-16.SP12_redhat_4.1.el7ea | 0:2.5.5-16.SP12_redhat_4.1.el7ea |
| redhat/eap7-resteasy | <0:3.6.1-4.SP3_redhat_00001.1.el7ea | 0:3.6.1-4.SP3_redhat_00001.1.el7ea |
| redhat/eap7-sun-istack-commons | <0:3.0.7-2.redhat_00001.1.el7ea | 0:3.0.7-2.redhat_00001.1.el7ea |
| redhat/eap7-undertow | <0:2.0.19-1.Final_redhat_00001.1.el7ea | 0:2.0.19-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-undertow-jastow | <0:2.0.7-2.Final_redhat_00001.1.el7ea | 0:2.0.7-2.Final_redhat_00001.1.el7ea |
| redhat/eap7-wildfly | <0:7.2.1-6.GA_redhat_00004.1.el7ea | 0:7.2.1-6.GA_redhat_00004.1.el7ea |
| redhat/eap7-wildfly-elytron | <0:1.6.2-1.Final_redhat_00001.1.el7ea | 0:1.6.2-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-wildfly-elytron-tool | <0:1.4.1-1.Final_redhat_00001.1.el7ea | 0:1.4.1-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-wildfly-http-client | <0:1.0.13-1.Final_redhat_00001.1.el7ea | 0:1.0.13-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-wildfly-transaction-client | <0:1.1.3-1.Final_redhat_00001.1.el7ea | 0:1.1.3-1.Final_redhat_00001.1.el7ea |
| redhat/eap7-yasson | <0:1.0.2-1.redhat_00001.1.el7ea | 0:1.0.2-1.redhat_00001.1.el7ea |
| redhat/rhvm-appliance | <0:4.3-20190502.0.el7 | 0:4.3-20190502.0.el7 |
| Redhat Undertow | ||
| Redhat Jboss Enterprise Application Platform | =7.1 | |
| Redhat Jboss Enterprise Application Platform | =7.2 | |
| Redhat Jboss Enterprise Application Platform | =7.3 | |
| Redhat Enterprise Linux | =6.0 | |
| Redhat Enterprise Linux | =7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/errata/RHSA-2019:0362
- https://access.redhat.com/errata/RHSA-2019:0364
- https://access.redhat.com/errata/RHSA-2019:0365
- https://access.redhat.com/errata/RHSA-2019:0380
- https://access.redhat.com/errata/RHSA-2019:1106
- https://access.redhat.com/errata/RHSA-2019:1107
- https://access.redhat.com/errata/RHSA-2019:1108
- https://access.redhat.com/errata/RHSA-2019:1140
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14642
- https://issues.jboss.org/browse/JBEAP-15428
- https://github.com/jbossas/redhat-undertow/commit/e65ad5b410f95b166ff04f876e22f873e9b4ce62
- https://access.redhat.com/support/policy/updates/jboss_notes
- https://access.redhat.com/security/cve/cve-2018-14642
- https://bugzilla.redhat.com/show_bug.cgi?id=1628702
- https://www.cve.org/CVERecord?id=CVE-2018-14642 https://nvd.nist.gov/vuln/detail/CVE-2018-14642
- https://access.redhat.com/errata/RHEA-2019:1119
Parent vulnerabilities
(Appears in the following advisories)
- collector/redhat-cve
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-14642
- agent/first-publish-date
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/description
- agent/event
- agent/trending
- package-manager/redhat
- vendor/redhat
- canonical/redhat undertow
- canonical/redhat jboss enterprise application platform
- version/redhat jboss enterprise application platform/7.1
- version/redhat jboss enterprise application platform/7.2
- version/redhat jboss enterprise application platform/7.3
- canonical/redhat enterprise linux
- version/redhat enterprise linux/6.0
- version/redhat enterprise linux/7.0