Vulnerability Database
Blog
FAQ
Docs
RHSA-2021:3956
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2021:3956
Import Source
https://security.access.redhat.com/data/osv/RHSA-2021:3956.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2021:3956
Related
CVE-2021-39139
CVE-2021-39140
CVE-2021-39141
CVE-2021-39144
CVE-2021-39145
CVE-2021-39146
CVE-2021-39147
CVE-2021-39148
CVE-2021-39149
CVE-2021-39150
CVE-2021-39151
CVE-2021-39152
CVE-2021-39153
CVE-2021-39154
Published
2024-09-20T15:04:48Z
Modified
2024-11-22T17:27:50Z
Severity
8.5 (High)
CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: xstream security update
Details
References
https://access.redhat.com/errata/RHSA-2021:3956
https://access.redhat.com/security/updates/classification/#important
https://bugzilla.redhat.com/show_bug.cgi?id=1997763
https://bugzilla.redhat.com/show_bug.cgi?id=1997765
https://bugzilla.redhat.com/show_bug.cgi?id=1997769
https://bugzilla.redhat.com/show_bug.cgi?id=1997772
https://bugzilla.redhat.com/show_bug.cgi?id=1997775
https://bugzilla.redhat.com/show_bug.cgi?id=1997777
https://bugzilla.redhat.com/show_bug.cgi?id=1997779
https://bugzilla.redhat.com/show_bug.cgi?id=1997781
https://bugzilla.redhat.com/show_bug.cgi?id=1997784
https://bugzilla.redhat.com/show_bug.cgi?id=1997786
https://bugzilla.redhat.com/show_bug.cgi?id=1997791
https://bugzilla.redhat.com/show_bug.cgi?id=1997793
https://bugzilla.redhat.com/show_bug.cgi?id=1997795
https://bugzilla.redhat.com/show_bug.cgi?id=1997801
https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_3956.json
https://access.redhat.com/security/cve/CVE-2021-39139
https://www.cve.org/CVERecord?id=CVE-2021-39139
https://nvd.nist.gov/vuln/detail/CVE-2021-39139
https://github.com/x-stream/xstream/security/advisories/GHSA-64xx-cq4q-mf44
https://access.redhat.com/security/cve/CVE-2021-39140
https://www.cve.org/CVERecord?id=CVE-2021-39140
https://nvd.nist.gov/vuln/detail/CVE-2021-39140
https://github.com/x-stream/xstream/security/advisories/GHSA-6wf9-jmg9-vxcc
https://access.redhat.com/security/cve/CVE-2021-39141
https://www.cve.org/CVERecord?id=CVE-2021-39141
https://nvd.nist.gov/vuln/detail/CVE-2021-39141
https://github.com/x-stream/xstream/security/advisories/GHSA-g5w6-mrj7-75h2
https://access.redhat.com/security/cve/CVE-2021-39144
https://www.cve.org/CVERecord?id=CVE-2021-39144
https://nvd.nist.gov/vuln/detail/CVE-2021-39144
https://github.com/x-stream/xstream/security/advisories/GHSA-j9h8-phrw-h4fh
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
https://access.redhat.com/security/cve/CVE-2021-39145
https://www.cve.org/CVERecord?id=CVE-2021-39145
https://nvd.nist.gov/vuln/detail/CVE-2021-39145
https://github.com/x-stream/xstream/security/advisories/GHSA-8jrj-525p-826v
https://access.redhat.com/security/cve/CVE-2021-39146
https://www.cve.org/CVERecord?id=CVE-2021-39146
https://nvd.nist.gov/vuln/detail/CVE-2021-39146
https://github.com/x-stream/xstream/security/advisories/GHSA-p8pq-r894-fm8f
https://access.redhat.com/security/cve/CVE-2021-39147
https://www.cve.org/CVERecord?id=CVE-2021-39147
https://nvd.nist.gov/vuln/detail/CVE-2021-39147
https://github.com/x-stream/xstream/security/advisories/GHSA-h7v4-7xg3-hxcc
https://access.redhat.com/security/cve/CVE-2021-39148
https://www.cve.org/CVERecord?id=CVE-2021-39148
https://nvd.nist.gov/vuln/detail/CVE-2021-39148
https://github.com/x-stream/xstream/security/advisories/GHSA-qrx8-8545-4wg2
https://access.redhat.com/security/cve/CVE-2021-39149
https://www.cve.org/CVERecord?id=CVE-2021-39149
https://nvd.nist.gov/vuln/detail/CVE-2021-39149
https://github.com/x-stream/xstream/security/advisories/GHSA-3ccq-5vw3-2p6x
https://access.redhat.com/security/cve/CVE-2021-39150
https://www.cve.org/CVERecord?id=CVE-2021-39150
https://nvd.nist.gov/vuln/detail/CVE-2021-39150
https://github.com/x-stream/xstream/security/advisories/GHSA-cxfm-5m4g-x7xp
https://access.redhat.com/security/cve/CVE-2021-39151
https://www.cve.org/CVERecord?id=CVE-2021-39151
https://nvd.nist.gov/vuln/detail/CVE-2021-39151
https://github.com/x-stream/xstream/security/advisories/GHSA-hph2-m3g5-xxv4
https://access.redhat.com/security/cve/CVE-2021-39152
https://www.cve.org/CVERecord?id=CVE-2021-39152
https://nvd.nist.gov/vuln/detail/CVE-2021-39152
https://github.com/x-stream/xstream/security/advisories/GHSA-xw4p-crpj-vjx2
https://access.redhat.com/security/cve/CVE-2021-39153
https://www.cve.org/CVERecord?id=CVE-2021-39153
https://nvd.nist.gov/vuln/detail/CVE-2021-39153
https://github.com/x-stream/xstream/security/advisories/GHSA-2q8x-2p7f-574v
https://access.redhat.com/security/cve/CVE-2021-39154
https://www.cve.org/CVERecord?id=CVE-2021-39154
https://nvd.nist.gov/vuln/detail/CVE-2021-39154
https://github.com/x-stream/xstream/security/advisories/GHSA-6w62-hx7r-mw68
Affected packages
Red Hat:enterprise_linux:7::client
/
xstream
Package
Name
xstream
Purl
pkg:rpm/redhat/xstream
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.3.1-16.el7_9
Red Hat:enterprise_linux:7::client
/
xstream-javadoc
Package
Name
xstream-javadoc
Purl
pkg:rpm/redhat/xstream-javadoc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.3.1-16.el7_9
Red Hat:enterprise_linux:7::computenode
/
xstream
Package
Name
xstream
Purl
pkg:rpm/redhat/xstream
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.3.1-16.el7_9
Red Hat:enterprise_linux:7::computenode
/
xstream-javadoc
Package
Name
xstream-javadoc
Purl
pkg:rpm/redhat/xstream-javadoc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.3.1-16.el7_9
Red Hat:enterprise_linux:7::server
/
xstream
Package
Name
xstream
Purl
pkg:rpm/redhat/xstream
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.3.1-16.el7_9
Red Hat:enterprise_linux:7::server
/
xstream-javadoc
Package
Name
xstream-javadoc
Purl
pkg:rpm/redhat/xstream-javadoc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.3.1-16.el7_9
Red Hat:enterprise_linux:7::workstation
/
xstream
Package
Name
xstream
Purl
pkg:rpm/redhat/xstream
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.3.1-16.el7_9
Red Hat:enterprise_linux:7::workstation
/
xstream-javadoc
Package
Name
xstream-javadoc
Purl
pkg:rpm/redhat/xstream-javadoc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.3.1-16.el7_9
RHSA-2021:3956 - OSV