- Vulnerability/
- RHSA-2020:1478
RHSA-2020:1478: Important: Red Hat JBoss Enterprise Application Platform 6.4 security update
First published: Tue Apr 14 2020(Updated: )
Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.<br>This asynchronous patch is a security update for the Apache Tomcat package in JBoss Enterprise Application Platform 6.4 for Red Hat Enterprise Linux 5, 6, and 7. All users of Red Hat JBoss Enterprise Application Platform 6.4 are advised to upgrade to this updated package.<br>Security Fix(es):<br><li> tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability (CVE-2020-1938)</li> For more details about the security issue(s), including the impact, a CVSS score, and other related information, see the CVE page(s) listed in the References section.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/jbossweb | <7.5.30-2.Final_redhat_2.1.ep6.el7 | 7.5.30-2.Final_redhat_2.1.ep6.el7 |
| redhat/jbossweb | <7.5.30-2.Final_redhat_2.1.ep6.el7 | 7.5.30-2.Final_redhat_2.1.ep6.el7 |
| redhat/jbossweb | <7.5.30-2.Final_redhat_2.1.ep6.el6 | 7.5.30-2.Final_redhat_2.1.ep6.el6 |
| redhat/jbossweb | <7.5.30-2.Final_redhat_2.1.ep6.el6 | 7.5.30-2.Final_redhat_2.1.ep6.el6 |
| redhat/jbossweb | <7.5.30-2.Final_redhat_2.1.ep6.el5 | 7.5.30-2.Final_redhat_2.1.ep6.el5 |
| redhat/jbossweb | <7.5.30-2.Final_redhat_2.1.ep6.el5 | 7.5.30-2.Final_redhat_2.1.ep6.el5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2020:1478
- agent/software-canonical-lookup
- package-manager/redhat