{"id":"RHSA-2017:2636","summary":"Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.17 update on RHEL 7","modified":"2026-03-19T10:01:47Z","published":"2024-09-20T13:50:56Z","upstream":["CVE-2017-5645","CVE-2017-5664","CVE-2017-7525"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:2636"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en/red-hat-jboss-enterprise-application-platform?version=6.4/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1443635"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1459158"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1462702"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2636.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-5645"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-5645"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5645"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-5664"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-5664"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5664"},{"type":"ARTICLE","url":"https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.78"},{"type":"ARTICLE","url":"https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.0.44"},{"type":"ARTICLE","url":"https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.15"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2017-7525"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2017-7525"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-7525"}],"affected":[{"package":{"name":"apache-cxf","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/apache-cxf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.7.18-7.SP6_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"codehaus-jackson","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/codehaus-jackson"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.9.9-11.redhat_5.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"codehaus-jackson-core-asl","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/codehaus-jackson-core-asl"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.9.9-11.redhat_5.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"codehaus-jackson-jaxrs","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/codehaus-jackson-jaxrs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.9.9-11.redhat_5.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"codehaus-jackson-mapper-asl","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/codehaus-jackson-mapper-asl"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.9.9-11.redhat_5.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"codehaus-jackson-xc","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/codehaus-jackson-xc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.9.9-11.redhat_5.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"hibernate4-core-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/hibernate4-core-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.27-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"hibernate4-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/hibernate4-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.27-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"hibernate4-entitymanager-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/hibernate4-entitymanager-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.27-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"hibernate4-envers-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/hibernate4-envers-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.27-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"hibernate4-infinispan-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/hibernate4-infinispan-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.27-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"hornetq","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/hornetq"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.3.25-22.SP20_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"infinispan","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/infinispan"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.2.22-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"infinispan-cachestore-jdbc","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/infinispan-cachestore-jdbc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.2.22-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"infinispan-cachestore-remote","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/infinispan-cachestore-remote"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.2.22-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"infinispan-client-hotrod","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/infinispan-client-hotrod"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.2.22-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"infinispan-core","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/infinispan-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.2.22-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-appclient","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-appclient"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-cli","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-cli"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-client-all","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-client-all"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-clustering","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-clustering"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-cmp","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-cmp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-configadmin","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-configadmin"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-connector","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-connector"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-controller","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-controller"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-controller-client","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-controller-client"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-core-security","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-core-security"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-deployment-repository","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-deployment-repository"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-deployment-scanner","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-deployment-scanner"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-domain-http","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-domain-http"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-domain-management","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-domain-management"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-ee","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-ee"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-ee-deployment","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-ee-deployment"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-ejb3","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-ejb3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-embedded","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-embedded"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-host-controller","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-host-controller"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-jacorb","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-jacorb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-jaxr","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-jaxr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-jaxrs","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-jaxrs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-jdr","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-jdr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-jmx","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-jmx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-jpa","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-jpa"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-jsf","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-jsf"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-jsr77","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-jsr77"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-logging","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-logging"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-mail","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-mail"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-management-client-content","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-management-client-content"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-messaging","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-messaging"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-modcluster","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-modcluster"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-naming","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-naming"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-network","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-network"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-osgi","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-osgi"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-osgi-configadmin","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-osgi-configadmin"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-osgi-service","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-osgi-service"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-picketlink","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-picketlink"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-platform-mbean","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-platform-mbean"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-pojo","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-pojo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-process-controller","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-process-controller"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-protocol","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-protocol"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-remoting","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-remoting"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-sar","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-sar"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-security","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-security"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-server","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-system-jmx","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-system-jmx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-threads","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-threads"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-transactions","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-transactions"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-version","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-version"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-web","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-web"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-webservices","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-webservices"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-weld","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-weld"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-as-xts","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-as-xts"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-marshalling","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-marshalling"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.4.10-3.SP3_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-metadata","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-metadata"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.2.3-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-metadata-appclient","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-metadata-appclient"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.2.3-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-metadata-common","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-metadata-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.2.3-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-metadata-ear","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-metadata-ear"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.2.3-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-metadata-ejb","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-metadata-ejb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.2.3-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-metadata-web","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-metadata-web"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.2.3-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-modules","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.3.10-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-remoting3","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-remoting3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.10-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jboss-vfs2","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jboss-vfs2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.2.12-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jbossas-appclient","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jbossas-appclient"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jbossas-bundles","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jbossas-bundles"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jbossas-core","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jbossas-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jbossas-domain","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jbossas-domain"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jbossas-javadocs","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jbossas-javadocs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-4.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jbossas-modules-eap","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jbossas-modules-eap"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-1.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jbossas-product-eap","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jbossas-product-eap"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jbossas-standalone","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jbossas-standalone"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jbossas-welcome-content-eap","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jbossas-welcome-content-eap"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.17-2.Final_redhat_4.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"jbossweb","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/jbossweb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:7.5.24-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"log4j-eap6","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/log4j-eap6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.2.16-12.redhat_3.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"log4j-jboss-logmanager","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/log4j-jboss-logmanager"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.1.4-1.Final_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"picketlink-bindings","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/picketlink-bindings"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.5.4-17.SP15_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}},{"package":{"name":"picketlink-federation","ecosystem":"Red Hat:jboss_enterprise_application_platform:6::el7","purl":"pkg:rpm/redhat/picketlink-federation"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.5.4-17.SP15_redhat_1.1.ep6.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:2636.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}