{"id":"RHSA-2018:2643","summary":"Red Hat Security Advisory: rhvm-appliance security update","modified":"2026-03-05T10:02:08Z","published":"2024-09-20T13:51:23Z","upstream":["CVE-2018-1000180","CVE-2018-10237","CVE-2018-1067","CVE-2018-10862","CVE-2018-10915","CVE-2018-1114","CVE-2018-8039"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:2643"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1550671"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1573045"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1573391"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1588306"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1593527"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1595332"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1609891"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616249"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_2643.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-1067"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-1067"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1067"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-1114"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-1114"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1114"},{"type":"ARTICLE","url":"https://bugs.openjdk.java.net/browse/JDK-6956385"},{"type":"ARTICLE","url":"https://issues.jboss.org/browse/UNDERTOW-1338"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-8039"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-8039"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-8039"},{"type":"ARTICLE","url":"http://cxf.apache.org/security-advisories.data/CVE-2018-8039.txt.asc?version=1&modificationDate=1530184663000&api=v2"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-10237"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-10237"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-10237"},{"type":"ARTICLE","url":"https://github.com/google/guava/wiki/CVE-2018-10237"},{"type":"ARTICLE","url":"https://groups.google.com/forum/#!topic/guava-announce/xqWALw4W1vs/discussion"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-10862"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-10862"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-10862"},{"type":"ARTICLE","url":"https://snyk.io/research/zip-slip-vulnerability"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-10915"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-10915"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-10915"},{"type":"ARTICLE","url":"https://www.postgresql.org/about/news/1878/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-1000180"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-1000180"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1000180"}],"affected":[{"package":{"name":"rhvm-appliance","ecosystem":"Red Hat:enterprise_linux:7::hypervisor","purl":"pkg:rpm/redhat/rhvm-appliance"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:4.2-20180828.0.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:2643.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"}]}