RHSA-2019:0451
- Source
- https://access.redhat.com/errata/RHSA-2019:0451
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2019:0451.json
- JSON Data
- https://api.osv.dev/v1/vulns/RHSA-2019:0451
- Related
- Published
- 2024-09-13T19:49:24Z
- Modified
- 2024-10-20T17:01:42Z
- Severity
-
- 5.7 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- Red Hat Security Advisory: Red Hat JBoss Web Server 5.0 Service Pack 2 security and bug fix update
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2019:0451
- https://access.redhat.com/security/updates/classification/#moderate
- https://bugzilla.redhat.com/show_bug.cgi?id=1579611
- https://bugzilla.redhat.com/show_bug.cgi?id=1607580
- https://issues.redhat.com/browse/JWS-1069
- https://issues.redhat.com/browse/JWS-1070
- https://issues.redhat.com/browse/JWS-1071
- https://issues.redhat.com/browse/JWS-1072
- https://issues.redhat.com/browse/JWS-1073
- https://issues.redhat.com/browse/JWS-1074
- https://issues.redhat.com/browse/JWS-1080
- https://issues.redhat.com/browse/JWS-1122
- https://issues.redhat.com/browse/JWS-1123
- https://issues.redhat.com/browse/JWS-1153
- https://issues.redhat.com/browse/JWS-1160
- https://issues.redhat.com/browse/JWS-1164
- https://issues.redhat.com/browse/JWS-1281
- https://issues.redhat.com/browse/JWS-1286
- https://issues.redhat.com/browse/JWS-654
- https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_0451.json
- https://access.redhat.com/security/cve/CVE-2018-8014
- https://www.cve.org/CVERecord?id=CVE-2018-8014
- https://nvd.nist.gov/vuln/detail/CVE-2018-8014
- http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.89
- http://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.0.53
- http://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.32
- http://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.9
- https://access.redhat.com/security/cve/CVE-2018-8034
- https://www.cve.org/CVERecord?id=CVE-2018-8034
- https://nvd.nist.gov/vuln/detail/CVE-2018-8034
Affected packages
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-ecj
Package
- Name
- jws5-ecj
- Purl
- pkg:rpm/redhat/jws5-ecj
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-javapackages-tools
Package
- Name
- jws5-javapackages-tools
- Purl
- pkg:rpm/redhat/jws5-javapackages-tools
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-jboss-logging
Package
- Name
- jws5-jboss-logging
- Purl
- pkg:rpm/redhat/jws5-jboss-logging
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-mod_cluster
Package
- Name
- jws5-mod_cluster
- Purl
- pkg:rpm/redhat/jws5-mod_cluster
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-mod_cluster-tomcat
Package
- Name
- jws5-mod_cluster-tomcat
- Purl
- pkg:rpm/redhat/jws5-mod_cluster-tomcat
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-python-javapackages
Package
- Name
- jws5-python-javapackages
- Purl
- pkg:rpm/redhat/jws5-python-javapackages
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat
Package
- Name
- jws5-tomcat
- Purl
- pkg:rpm/redhat/jws5-tomcat
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-admin-webapps
Package
- Name
- jws5-tomcat-admin-webapps
- Purl
- pkg:rpm/redhat/jws5-tomcat-admin-webapps
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-docs-webapp
Package
- Name
- jws5-tomcat-docs-webapp
- Purl
- pkg:rpm/redhat/jws5-tomcat-docs-webapp
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-el-3.0-api
Package
- Name
- jws5-tomcat-el-3.0-api
- Purl
- pkg:rpm/redhat/jws5-tomcat-el-3.0-api
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-javadoc
Package
- Name
- jws5-tomcat-javadoc
- Purl
- pkg:rpm/redhat/jws5-tomcat-javadoc
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-jsp-2.3-api
Package
- Name
- jws5-tomcat-jsp-2.3-api
- Purl
- pkg:rpm/redhat/jws5-tomcat-jsp-2.3-api
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-jsvc
Package
- Name
- jws5-tomcat-jsvc
- Purl
- pkg:rpm/redhat/jws5-tomcat-jsvc
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-lib
Package
- Name
- jws5-tomcat-lib
- Purl
- pkg:rpm/redhat/jws5-tomcat-lib
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-native
Package
- Name
- jws5-tomcat-native
- Purl
- pkg:rpm/redhat/jws5-tomcat-native
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-native-debuginfo
Package
- Name
- jws5-tomcat-native-debuginfo
- Purl
- pkg:rpm/redhat/jws5-tomcat-native-debuginfo
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-selinux
Package
- Name
- jws5-tomcat-selinux
- Purl
- pkg:rpm/redhat/jws5-tomcat-selinux
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-servlet-4.0-api
Package
- Name
- jws5-tomcat-servlet-4.0-api
- Purl
- pkg:rpm/redhat/jws5-tomcat-servlet-4.0-api
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-vault
Package
- Name
- jws5-tomcat-vault
- Purl
- pkg:rpm/redhat/jws5-tomcat-vault
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-vault-javadoc
Package
- Name
- jws5-tomcat-vault-javadoc
- Purl
- pkg:rpm/redhat/jws5-tomcat-vault-javadoc
Red Hat:jboss_enterprise_web_server:5.0::el6 / jws5-tomcat-webapps
Package
- Name
- jws5-tomcat-webapps
- Purl
- pkg:rpm/redhat/jws5-tomcat-webapps
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-ecj
Package
- Name
- jws5-ecj
- Purl
- pkg:rpm/redhat/jws5-ecj
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-javapackages-tools
Package
- Name
- jws5-javapackages-tools
- Purl
- pkg:rpm/redhat/jws5-javapackages-tools
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-jboss-logging
Package
- Name
- jws5-jboss-logging
- Purl
- pkg:rpm/redhat/jws5-jboss-logging
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-mod_cluster
Package
- Name
- jws5-mod_cluster
- Purl
- pkg:rpm/redhat/jws5-mod_cluster
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-mod_cluster-tomcat
Package
- Name
- jws5-mod_cluster-tomcat
- Purl
- pkg:rpm/redhat/jws5-mod_cluster-tomcat
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-python-javapackages
Package
- Name
- jws5-python-javapackages
- Purl
- pkg:rpm/redhat/jws5-python-javapackages
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat
Package
- Name
- jws5-tomcat
- Purl
- pkg:rpm/redhat/jws5-tomcat
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-admin-webapps
Package
- Name
- jws5-tomcat-admin-webapps
- Purl
- pkg:rpm/redhat/jws5-tomcat-admin-webapps
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-docs-webapp
Package
- Name
- jws5-tomcat-docs-webapp
- Purl
- pkg:rpm/redhat/jws5-tomcat-docs-webapp
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-el-3.0-api
Package
- Name
- jws5-tomcat-el-3.0-api
- Purl
- pkg:rpm/redhat/jws5-tomcat-el-3.0-api
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-javadoc
Package
- Name
- jws5-tomcat-javadoc
- Purl
- pkg:rpm/redhat/jws5-tomcat-javadoc
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-jsp-2.3-api
Package
- Name
- jws5-tomcat-jsp-2.3-api
- Purl
- pkg:rpm/redhat/jws5-tomcat-jsp-2.3-api
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-jsvc
Package
- Name
- jws5-tomcat-jsvc
- Purl
- pkg:rpm/redhat/jws5-tomcat-jsvc
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-lib
Package
- Name
- jws5-tomcat-lib
- Purl
- pkg:rpm/redhat/jws5-tomcat-lib
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-native
Package
- Name
- jws5-tomcat-native
- Purl
- pkg:rpm/redhat/jws5-tomcat-native
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-native-debuginfo
Package
- Name
- jws5-tomcat-native-debuginfo
- Purl
- pkg:rpm/redhat/jws5-tomcat-native-debuginfo
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-selinux
Package
- Name
- jws5-tomcat-selinux
- Purl
- pkg:rpm/redhat/jws5-tomcat-selinux
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-servlet-4.0-api
Package
- Name
- jws5-tomcat-servlet-4.0-api
- Purl
- pkg:rpm/redhat/jws5-tomcat-servlet-4.0-api
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-vault
Package
- Name
- jws5-tomcat-vault
- Purl
- pkg:rpm/redhat/jws5-tomcat-vault
Red Hat:jboss_enterprise_web_server:5.0::el7 / jws5-tomcat-vault-javadoc
Package
- Name
- jws5-tomcat-vault-javadoc
- Purl
- pkg:rpm/redhat/jws5-tomcat-vault-javadoc