What is the severity of RHSA-2025:1638?

The vulnerability RHSA-2025:1638 is categorized as important, indicating a moderate impact on security.

How do I fix RHSA-2025:1638?

To resolve RHSA-2025:1638, update the affected packages to the recommended versions specified in the advisory.

Which products are affected by RHSA-2025:1638?

RHSA-2025:1638 affects multiple packages within the Red Hat JBoss Enterprise Application Platform 7, including eap7-hal-console and eap7-wildfly.

What versions should I upgrade to for RHSA-2025:1638?

You should upgrade to the specific remedy versions listed in the advisory for each affected package to mitigate RHSA-2025:1638.

Is there a risk of exploitation for RHSA-2025:1638?

Yes, the vulnerability addressed by RHSA-2025:1638 could potentially be exploited, so timely remediation is recommended.

Vulnerability/
RHSA-2025:1638

high

18/2/2025

27/2/2025

RHSA-2025:1638: Important: Red Hat JBoss Enterprise Application Platform 7.4.21 security update

First published: Tue Feb 18 2025(Updated: )

Important: Red Hat JBoss Enterprise Application Platform 7.4.21 security update

Affected Software	Affected Version	How to fix
redhat/eap7-hal-console	<3.3.25-1.Final_redhat_00001.1.el9ea	3.3.25-1.Final_redhat_00001.1.el9ea
redhat/eap7-hibernate	<5.3.37-1.Final_redhat_00001.1.el9ea	5.3.37-1.Final_redhat_00001.1.el9ea
redhat/eap7-jbossws-common	<3.4.0-1.Final_redhat_00001.1.el9ea	3.4.0-1.Final_redhat_00001.1.el9ea
redhat/eap7-jbossws-cxf	<5.4.14-1.Final_redhat_00001.1.el9ea	5.4.14-1.Final_redhat_00001.1.el9ea
redhat/eap7-opensaml	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-wildfly	<7.4.21-2.GA_redhat_00001.1.el9ea	7.4.21-2.GA_redhat_00001.1.el9ea
redhat/eap7-xml-security	<2.3.5-1.redhat_00001.1.el9ea	2.3.5-1.redhat_00001.1.el9ea
redhat/eap7-hibernate-core	<5.3.37-1.Final_redhat_00001.1.el9ea	5.3.37-1.Final_redhat_00001.1.el9ea
redhat/eap7-hibernate-envers	<5.3.37-1.Final_redhat_00001.1.el9ea	5.3.37-1.Final_redhat_00001.1.el9ea
redhat/eap7-opensaml-core	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-profile-api	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-saml-api	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-saml-impl	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-security-api	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-security-impl	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-soap-api	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-xacml-api	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-xacml-impl	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-xacml-saml-api	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-xacml-saml-impl	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-xmlsec-api	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-opensaml-xmlsec-impl	<3.4.6-1.redhat_00001.1.el9ea	3.4.6-1.redhat_00001.1.el9ea
redhat/eap7-wildfly-java-jdk11	<7.4.21-2.GA_redhat_00001.1.el9ea	7.4.21-2.GA_redhat_00001.1.el9ea
redhat/eap7-wildfly-java-jdk17	<7.4.21-2.GA_redhat_00001.1.el9ea	7.4.21-2.GA_redhat_00001.1.el9ea
redhat/eap7-wildfly-java-jdk8	<7.4.21-2.GA_redhat_00001.1.el9ea	7.4.21-2.GA_redhat_00001.1.el9ea
redhat/eap7-wildfly-javadocs	<7.4.21-2.GA_redhat_00001.1.el9ea	7.4.21-2.GA_redhat_00001.1.el9ea
redhat/eap7-wildfly-modules	<7.4.21-2.GA_redhat_00001.1.el9ea	7.4.21-2.GA_redhat_00001.1.el9ea
JBoss Enterprise Application Platform

Never miss a vulnerability like this again

Reference Links

https://access.redhat.com/errata/RHSA-2025:1638 (Advisory)

Frequently Asked Questions

What is the severity of RHSA-2025:1638?
The vulnerability RHSA-2025:1638 is categorized as important, indicating a moderate impact on security.
How do I fix RHSA-2025:1638?
To resolve RHSA-2025:1638, update the affected packages to the recommended versions specified in the advisory.
Which products are affected by RHSA-2025:1638?
RHSA-2025:1638 affects multiple packages within the Red Hat JBoss Enterprise Application Platform 7, including eap7-hal-console and eap7-wildfly.
What versions should I upgrade to for RHSA-2025:1638?
You should upgrade to the specific remedy versions listed in the advisory for each affected package to mitigate RHSA-2025:1638.
Is there a risk of exploitation for RHSA-2025:1638?
Yes, the vulnerability addressed by RHSA-2025:1638 could potentially be exploited, so timely remediation is recommended.

agent/remedy
agent/title
agent/severity
agent/source
agent/type
collector/redhat-errata-latest
source/Red Hat
anchor-id/RHSA-2025:1638
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
agent/first-publish-date
agent/references
agent/last-modified-date
agent/description
agent/tags
agent/event
collector/redhat-errata
vendor/red hat
canonical/jboss enterprise application platform
package-manager/redhat