{"id":"RHSA-2008:0828","summary":"Red Hat Security Advisory: JBoss Enterprise Application Platform 4.3.0CP01 security update","modified":"2025-11-22T10:17:55Z","published":"2024-09-15T17:17:45Z","upstream":["CVE-2008-1285","CVE-2008-3273"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2008:0828"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"http://redhat.com/docs/en-US/JBoss_Enterprise_Application_Platform/4.3.0.cp01/html-single/readme/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=437082"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=457757"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2008/rhsa-2008_0828.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2008-1285"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2008-1285"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2008-1285"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2008-3273"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2008-3273"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2008-3273"}],"affected":[{"package":{"name":"asm","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/asm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.5.3-1jpp.ep1.2.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"cglib","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/cglib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.3-2jpp.ep1.6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"concurrent","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/concurrent"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.4-8jpp.ep1.6.el5.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"glassfish-jsf","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/glassfish-jsf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.2_08-0jpp.ep1.2.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"hibernate3","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/hibernate3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:3.2.4-1.SP1_CP03.0jpp.ep1.1.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"hibernate3-annotations","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/hibernate3-annotations"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.2.1-1.patch02.1jpp.ep1.3.el5.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"hibernate3-annotations-javadoc","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/hibernate3-annotations-javadoc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.2.1-1.patch02.1jpp.ep1.3.el5.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"hibernate3-entitymanager","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/hibernate3-entitymanager"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.2.1-1jpp.ep1.7.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"hibernate3-entitymanager-javadoc","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/hibernate3-entitymanager-javadoc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.2.1-1jpp.ep1.7.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"hibernate3-javadoc","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/hibernate3-javadoc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:3.2.4-1.SP1_CP03.0jpp.ep1.1.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jboss-aop","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jboss-aop"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.5.5-1.CP01.0jpp.ep1.1.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jboss-cache","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jboss-cache"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.4.1-4.SP9.1jpp.ep1.1.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jboss-messaging","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jboss-messaging"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.4.0-1.SP3_CP02.0jpp.ep1.6.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jboss-remoting","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jboss-remoting"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.2.2-3.SP7.0jpp.ep1.3.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jboss-seam","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jboss-seam"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.2.1-3.JBPAPP_4_3_0_GA.ep1.5.el5.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jboss-seam-docs","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jboss-seam-docs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.2.1-3.JBPAPP_4_3_0_GA.ep1.5.el5.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jbossas","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jbossas"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.0-2.GA_CP01.ep1.6.el5.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jbossts","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jbossts"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:4.2.3-1.SP5_CP01.1jpp.ep1.1.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jbossws","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jbossws"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.1-2.SP2_CP01.0jpp.ep1.2.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jbossxb","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jbossxb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.0-2.SP1.0jpp.ep1.2.el5.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jcommon","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jcommon"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.12-1jpp.ep1.3.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jfreechart","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jfreechart"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.9-1jpp.ep1.3.el5.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"jgroups","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/jgroups"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:2.4.2-1.GA_CP01.0jpp.ep1.1.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}},{"package":{"name":"rh-eap-docs","ecosystem":"Red Hat:jboss_enterprise_application_platform:4.3.0::el5","purl":"pkg:rpm/redhat/rh-eap-docs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.3.0-2.GA_CP01.ep1.4.el5"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2008:0828.json"}}],"schema_version":"1.7.3"}