What is the severity of REDHAT-BUG-1408305?

REDHAT-BUG-1408305 is classified as a medium severity vulnerability that could lead to Denial of Service.

How do I fix REDHAT-BUG-1408305?

To mitigate the effects of REDHAT-BUG-1408305, upgrade your libxml2 to a patched version provided by your vendor.

What software is affected by REDHAT-BUG-1408305?

REDHAT-BUG-1408305 impacts Red Hat JBoss Core Services, Apache HTTP Server, and libxml2.

What vulnerability does REDHAT-BUG-1408305 relate to?

REDHAT-BUG-1408305 is related to the unresolved issue in libxml2 associated with CVE-2016-3705.

Is there a workaround for REDHAT-BUG-1408305?

Currently, there are no recommended workarounds for REDHAT-BUG-1408305; updating the affected software is essential.

Vulnerability/
REDHAT-BUG-1408305

medium

22/12/2016

10/12/2021

REDHAT-BUG-1408305

First published: Thu Dec 22 2016(Updated: )

It was found that Red Hat JBoss Core Services incorrectly included <a href="https://access.redhat.com/security/cve/CVE-2016-3705">CVE-2016-3705</a> as resolved in Apache HTTP 2.4.23 (erratum RHSA-2016:2957). The release did not include the fix to libxml2, leaving it vulnerable to a Denial of Service attack due to a Stack Overflow. This is a regression CVE for <a href="https://access.redhat.com/security/cve/CVE-2016-3705">CVE-2016-3705</a>.

Affected Software	Affected Version	How to fix
Red Hat JBoss Core Services
Apache HTTP Server
libxml2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-1408305?
REDHAT-BUG-1408305 is classified as a medium severity vulnerability that could lead to Denial of Service.
How do I fix REDHAT-BUG-1408305?
To mitigate the effects of REDHAT-BUG-1408305, upgrade your libxml2 to a patched version provided by your vendor.
What software is affected by REDHAT-BUG-1408305?
REDHAT-BUG-1408305 impacts Red Hat JBoss Core Services, Apache HTTP Server, and libxml2.
What vulnerability does REDHAT-BUG-1408305 relate to?
REDHAT-BUG-1408305 is related to the unresolved issue in libxml2 associated with CVE-2016-3705.
Is there a workaround for REDHAT-BUG-1408305?
Currently, there are no recommended workarounds for REDHAT-BUG-1408305; updating the affected software is essential.

collector/redhat-bugzilla
alias/CVE-2016-9597
agent/references
agent/type
agent/first-publish-date
agent/last-modified-date
agent/severity
agent/description
agent/event
agent/tags
agent/softwarecombine
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/red hat
canonical/red hat jboss core services
vendor/apache
canonical/apache http server
vendor/libxml2
canonical/libxml2

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.