What is the severity of RHSA-2020:5175?

The severity of RHSA-2020:5175 is categorized as moderate.

How do I fix RHSA-2020:5175?

To fix RHSA-2020:5175, upgrade to the specified versions of the affected packages for your Red Hat Enterprise Linux version.

Which Red Hat JBoss packages are affected by RHSA-2020:5175?

The affected packages include eap7-hibernate, eap7-hibernate-core, eap7-hibernate-entitymanager, eap7-hibernate-envers, and eap7-hibernate-java8.

What versions of Red Hat Enterprise Linux are impacted by RHSA-2020:5175?

RHSA-2020:5175 impacts Red Hat Enterprise Linux versions 6, 7, and 8.

Is RHSA-2020:5175 an asynchronous patch?

Yes, RHSA-2020:5175 is identified as an asynchronous patch for Red Hat JBoss Enterprise Application Platform 7.

Vulnerability/
RHSA-2020:5175

CWE

23/11/2020

3/3/2024

RHSA-2020:5175: Important: Red Hat JBoss Enterprise Application Platform 7.3 security update

First published: Mon Nov 23 2020(Updated: )

Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.<br>This asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 6, 7, and 8.<br>Security Fix(es):<br><li> hibernate-core: SQL injection vulnerability when both hibernate.use_sql_comments and JPQL String literals are used (CVE-2020-25638)</li> For more details about the security issue(s), including the impact, a CVSS score, and other related information, see the CVE page(s) listed in the References section.

Never miss a vulnerability like this again

Reference Links

https://access.redhat.com/errata/RHSA-2020:5175 (Advisory)

Frequently Asked Questions

What is the severity of RHSA-2020:5175?
The severity of RHSA-2020:5175 is categorized as moderate.
How do I fix RHSA-2020:5175?
To fix RHSA-2020:5175, upgrade to the specified versions of the affected packages for your Red Hat Enterprise Linux version.
Which Red Hat JBoss packages are affected by RHSA-2020:5175?
The affected packages include eap7-hibernate, eap7-hibernate-core, eap7-hibernate-entitymanager, eap7-hibernate-envers, and eap7-hibernate-java8.
What versions of Red Hat Enterprise Linux are impacted by RHSA-2020:5175?
RHSA-2020:5175 impacts Red Hat Enterprise Linux versions 6, 7, and 8.
Is RHSA-2020:5175 an asynchronous patch?
Yes, RHSA-2020:5175 is identified as an asynchronous patch for Red Hat JBoss Enterprise Application Platform 7.

agent/severity
agent/type
agent/softwarecombine
agent/last-modified-date
agent/first-publish-date
agent/remedy
agent/weakness
agent/references
agent/title
agent/tags
agent/description
agent/event
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2020:5175
agent/software-canonical-lookup
package-manager/redhat

Frequently Asked Questions

What is the severity of RHSA-2020:5175?
The severity of RHSA-2020:5175 is categorized as moderate.
How do I fix RHSA-2020:5175?
To fix RHSA-2020:5175, upgrade to the specified versions of the affected packages for your Red Hat Enterprise Linux version.
Which Red Hat JBoss packages are affected by RHSA-2020:5175?
The affected packages include eap7-hibernate, eap7-hibernate-core, eap7-hibernate-entitymanager, eap7-hibernate-envers, and eap7-hibernate-java8.
What versions of Red Hat Enterprise Linux are impacted by RHSA-2020:5175?
RHSA-2020:5175 impacts Red Hat Enterprise Linux versions 6, 7, and 8.
Is RHSA-2020:5175 an asynchronous patch?
Yes, RHSA-2020:5175 is identified as an asynchronous patch for Red Hat JBoss Enterprise Application Platform 7.

RHSA-2020:5175: Important: Red Hat JBoss Enterprise Application Platform 7.3 security update

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2020:5175?

How do I fix RHSA-2020:5175?

Which Red Hat JBoss packages are affected by RHSA-2020:5175?

What versions of Red Hat Enterprise Linux are impacted by RHSA-2020:5175?

Is RHSA-2020:5175 an asynchronous patch?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of RHSA-2020:5175?

How do I fix RHSA-2020:5175?

Which Red Hat JBoss packages are affected by RHSA-2020:5175?

What versions of Red Hat Enterprise Linux are impacted by RHSA-2020:5175?

Is RHSA-2020:5175 an asynchronous patch?

Affected Software	Affected Version	How to fix
redhat/eap7-hibernate	<5.3.18-2.Final_redhat_00002.1.el8ea	5.3.18-2.Final_redhat_00002.1.el8ea
redhat/eap7-hibernate-core	<5.3.18-2.Final_redhat_00002.1.el8ea	5.3.18-2.Final_redhat_00002.1.el8ea
redhat/eap7-hibernate-entitymanager	<5.3.18-2.Final_redhat_00002.1.el8ea	5.3.18-2.Final_redhat_00002.1.el8ea
redhat/eap7-hibernate-envers	<5.3.18-2.Final_redhat_00002.1.el8ea	5.3.18-2.Final_redhat_00002.1.el8ea
redhat/eap7-hibernate-java8	<5.3.18-2.Final_redhat_00002.1.el8ea	5.3.18-2.Final_redhat_00002.1.el8ea
redhat/eap7-hibernate	<5.3.18-2.Final_redhat_00002.1.el7ea	5.3.18-2.Final_redhat_00002.1.el7ea
redhat/eap7-hibernate-core	<5.3.18-2.Final_redhat_00002.1.el7ea	5.3.18-2.Final_redhat_00002.1.el7ea
redhat/eap7-hibernate-entitymanager	<5.3.18-2.Final_redhat_00002.1.el7ea	5.3.18-2.Final_redhat_00002.1.el7ea
redhat/eap7-hibernate-envers	<5.3.18-2.Final_redhat_00002.1.el7ea	5.3.18-2.Final_redhat_00002.1.el7ea
redhat/eap7-hibernate-java8	<5.3.18-2.Final_redhat_00002.1.el7ea	5.3.18-2.Final_redhat_00002.1.el7ea
redhat/eap7-hibernate	<5.3.18-2.Final_redhat_00002.1.el6ea	5.3.18-2.Final_redhat_00002.1.el6ea
redhat/eap7-hibernate-core	<5.3.18-2.Final_redhat_00002.1.el6ea	5.3.18-2.Final_redhat_00002.1.el6ea
redhat/eap7-hibernate-entitymanager	<5.3.18-2.Final_redhat_00002.1.el6ea	5.3.18-2.Final_redhat_00002.1.el6ea
redhat/eap7-hibernate-envers	<5.3.18-2.Final_redhat_00002.1.el6ea	5.3.18-2.Final_redhat_00002.1.el6ea
redhat/eap7-hibernate-java8	<5.3.18-2.Final_redhat_00002.1.el6ea	5.3.18-2.Final_redhat_00002.1.el6ea