First published: Tue Mar 16 2021(Updated: )
Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.<br>This release of Red Hat JBoss Enterprise Application Platform 7.3.6 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.3.5, and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.3.6 Release Notes for information about the most significant bug fixes and enhancements included in this release.<br>Security Fix(es):<br><li> jboss-remoting: Threads hold up forever in the EJB server by suppressing the ack from an EJB client (CVE-2020-35510)</li> <li> bouncycastle: password bypass in OpenBSDBCrypt.checkPassword utility possible (CVE-2020-28052)</li> <li> wildfly-undertow: undertow: Possible regression in fix for CVE-2020-10687 (CVE-2021-20220)</li> <li> jboss-ejb-client: wildfly: Information disclosure due to publicly accessible privileged actions in JBoss EJB Client (CVE-2021-20250)</li> <li> guava: local information disclosure via temporary directory created with unsafe permissions (CVE-2020-8908)</li>
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/eap7-activemq-artemis | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-bouncycastle | <1.68.0-1.redhat_00001.1.el8ea | 1.68.0-1.redhat_00001.1.el8ea |
redhat/eap7-guava-failureaccess | <1.0.1-1.redhat_00002.1.el8ea | 1.0.1-1.redhat_00002.1.el8ea |
redhat/eap7-guava-libraries | <30.1.0-1.redhat_00001.1.el8ea | 30.1.0-1.redhat_00001.1.el8ea |
redhat/eap7-hal-console | <3.2.13-1.Final_redhat_00001.1.el8ea | 3.2.13-1.Final_redhat_00001.1.el8ea |
redhat/eap7-ironjacamar | <1.4.27-1.Final_redhat_00001.1.el8ea | 1.4.27-1.Final_redhat_00001.1.el8ea |
redhat/eap7-jboss-ejb-client | <4.0.39-1.SP1_redhat_00001.1.el8ea | 4.0.39-1.SP1_redhat_00001.1.el8ea |
redhat/eap7-jboss-logmanager | <2.1.18-1.Final_redhat_00001.1.el8ea | 2.1.18-1.Final_redhat_00001.1.el8ea |
redhat/eap7-jboss-remoting | <5.0.20-2.SP1_redhat_00001.1.el8ea | 5.0.20-2.SP1_redhat_00001.1.el8ea |
redhat/eap7-jboss-server-migration | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-narayana | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-undertow | <2.0.34-1.SP1_redhat_00001.1.el8ea | 2.0.34-1.SP1_redhat_00001.1.el8ea |
redhat/eap7-wildfly | <7.3.6-1.GA_redhat_00002.1.el8ea | 7.3.6-1.GA_redhat_00002.1.el8ea |
redhat/eap7-wildfly-elytron | <1.10.11-1.Final_redhat_00001.1.el8ea | 1.10.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-wildfly-http-client | <1.0.25-1.Final_redhat_00001.1.el8ea | 1.0.25-1.Final_redhat_00001.1.el8ea |
redhat/eap7-wildfly-naming-client | <1.0.14-1.Final_redhat_00001.1.el8ea | 1.0.14-1.Final_redhat_00001.1.el8ea |
redhat/eap7-activemq-artemis-cli | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-commons | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-core-client | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-dto | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-hornetq-protocol | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-hqclient-protocol | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-jdbc-store | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-jms-client | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-jms-server | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-journal | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-ra | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-selector | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-server | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-service-extensions | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-activemq-artemis-tools | <2.9.0-9.redhat_00019.1.el8ea | 2.9.0-9.redhat_00019.1.el8ea |
redhat/eap7-bouncycastle-mail | <1.68.0-1.redhat_00001.1.el8ea | 1.68.0-1.redhat_00001.1.el8ea |
redhat/eap7-bouncycastle-pkix | <1.68.0-1.redhat_00001.1.el8ea | 1.68.0-1.redhat_00001.1.el8ea |
redhat/eap7-bouncycastle-prov | <1.68.0-1.redhat_00001.1.el8ea | 1.68.0-1.redhat_00001.1.el8ea |
redhat/eap7-guava | <30.1.0-1.redhat_00001.1.el8ea | 30.1.0-1.redhat_00001.1.el8ea |
redhat/eap7-ironjacamar-common-api | <1.4.27-1.Final_redhat_00001.1.el8ea | 1.4.27-1.Final_redhat_00001.1.el8ea |
redhat/eap7-ironjacamar-common-impl | <1.4.27-1.Final_redhat_00001.1.el8ea | 1.4.27-1.Final_redhat_00001.1.el8ea |
redhat/eap7-ironjacamar-common-spi | <1.4.27-1.Final_redhat_00001.1.el8ea | 1.4.27-1.Final_redhat_00001.1.el8ea |
redhat/eap7-ironjacamar-core-api | <1.4.27-1.Final_redhat_00001.1.el8ea | 1.4.27-1.Final_redhat_00001.1.el8ea |
redhat/eap7-ironjacamar-core-impl | <1.4.27-1.Final_redhat_00001.1.el8ea | 1.4.27-1.Final_redhat_00001.1.el8ea |
redhat/eap7-ironjacamar-deployers-common | <1.4.27-1.Final_redhat_00001.1.el8ea | 1.4.27-1.Final_redhat_00001.1.el8ea |
redhat/eap7-ironjacamar-jdbc | <1.4.27-1.Final_redhat_00001.1.el8ea | 1.4.27-1.Final_redhat_00001.1.el8ea |
redhat/eap7-ironjacamar-validator | <1.4.27-1.Final_redhat_00001.1.el8ea | 1.4.27-1.Final_redhat_00001.1.el8ea |
redhat/eap7-jboss-server-migration-cli | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-core | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-eap6.4 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-eap6.4-to-eap7.3 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-eap7.0 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-eap7.1 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-eap7.2 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-eap7.2-to-eap7.3 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-eap7.3-server | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly10.0 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly10.1 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly11.0 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly12.0 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly13.0-server | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly14.0-server | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly15.0-server | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly16.0-server | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly17.0-server | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly18.0-server | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly8.2 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-jboss-server-migration-wildfly9.0 | <1.7.2-5.Final_redhat_00006.1.el8ea | 1.7.2-5.Final_redhat_00006.1.el8ea |
redhat/eap7-narayana-compensations | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-narayana-jbosstxbridge | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-narayana-jbossxts | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-narayana-jts-idlj | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-narayana-jts-integration | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-narayana-restat-api | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-narayana-restat-bridge | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-narayana-restat-integration | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-narayana-restat-util | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-narayana-txframework | <5.9.11-1.Final_redhat_00001.1.el8ea | 5.9.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-wildfly-elytron-tool | <1.10.11-1.Final_redhat_00001.1.el8ea | 1.10.11-1.Final_redhat_00001.1.el8ea |
redhat/eap7-wildfly-http-client-common | <1.0.25-1.Final_redhat_00001.1.el8ea | 1.0.25-1.Final_redhat_00001.1.el8ea |
redhat/eap7-wildfly-http-ejb-client | <1.0.25-1.Final_redhat_00001.1.el8ea | 1.0.25-1.Final_redhat_00001.1.el8ea |
redhat/eap7-wildfly-http-naming-client | <1.0.25-1.Final_redhat_00001.1.el8ea | 1.0.25-1.Final_redhat_00001.1.el8ea |
redhat/eap7-wildfly-http-transaction-client | <1.0.25-1.Final_redhat_00001.1.el8ea | 1.0.25-1.Final_redhat_00001.1.el8ea |
redhat/eap7-wildfly-javadocs | <7.3.6-1.GA_redhat_00002.1.el8ea | 7.3.6-1.GA_redhat_00002.1.el8ea |
redhat/eap7-wildfly-modules | <7.3.6-1.GA_redhat_00002.1.el8ea | 7.3.6-1.GA_redhat_00002.1.el8ea |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.