Action not permitted
Modal body text goes here.
cve-2008-0002
Vulnerability from cvelistv5
Published
2008-02-12 00:00
Modified
2024-08-07 07:32
Severity ?
EPSS score ?
Summary
Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-07T07:32:23.827Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "3638", "tags": [ "third-party-advisory", "x_refsource_SREASON", "x_transferred" ], "url": "http://securityreason.com/securityalert/3638" }, { "name": "27703", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/27703" }, { "name": "28915", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/28915" }, { "name": "37460", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37460" }, { "name": "20080208 CVE-2008-0002: Tomcat information disclosure vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "http://www.securityfocus.com/archive/1/487812/100/0/threaded" }, { "name": "31681", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/31681" }, { "name": "28834", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/28834" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.vmware.com/security/advisories/VMSA-2009-0016.html" }, { "name": "ADV-2008-0488", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2008/0488" }, { "name": "20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "http://www.securityfocus.com/archive/1/507985/100/0/threaded" }, { "name": "SUSE-SR:2009:004", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://tomcat.apache.org/security-6.html" }, { "name": "57126", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/57126" }, { "name": "32222", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/32222" }, { "name": "FEDORA-2008-1467", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html" }, { "name": "GLSA-200804-10", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "http://security.gentoo.org/glsa/glsa-200804-10.xml" }, { "name": "FEDORA-2008-1603", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html" }, { "name": "ADV-2008-2780", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2008/2780" }, { "name": "HPSBST02955", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=139344343412337\u0026w=2" }, { "name": "APPLE-SA-2008-10-09", "tags": [ "vendor-advisory", "x_refsource_APPLE", "x_transferred" ], "url": "http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://support.apple.com/kb/HT3216" }, { "name": "29711", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/29711" }, { "name": "ADV-2009-3316", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2009/3316" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2008-02-08T00:00:00", "descriptions": [ { "lang": "en", "value": "Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2018-10-15T20:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "name": "3638", "tags": [ "third-party-advisory", "x_refsource_SREASON" ], "url": "http://securityreason.com/securityalert/3638" }, { "name": "27703", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/27703" }, { "name": "28915", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/28915" }, { "name": "37460", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37460" }, { "name": "20080208 CVE-2008-0002: Tomcat information disclosure vulnerability", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "http://www.securityfocus.com/archive/1/487812/100/0/threaded" }, { "name": "31681", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/31681" }, { "name": "28834", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/28834" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.vmware.com/security/advisories/VMSA-2009-0016.html" }, { "name": "ADV-2008-0488", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2008/0488" }, { "name": "20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "http://www.securityfocus.com/archive/1/507985/100/0/threaded" }, { "name": "SUSE-SR:2009:004", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://tomcat.apache.org/security-6.html" }, { "name": "57126", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/57126" }, { "name": "32222", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/32222" }, { "name": "FEDORA-2008-1467", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html" }, { "name": "GLSA-200804-10", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "http://security.gentoo.org/glsa/glsa-200804-10.xml" }, { "name": "FEDORA-2008-1603", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html" }, { "name": "ADV-2008-2780", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2008/2780" }, { "name": "HPSBST02955", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=139344343412337\u0026w=2" }, { "name": "APPLE-SA-2008-10-09", "tags": [ "vendor-advisory", "x_refsource_APPLE" ], "url": "http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://support.apple.com/kb/HT3216" }, { "name": "29711", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/29711" }, { "name": "ADV-2009-3316", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2009/3316" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2008-0002", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "3638", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/3638" }, { "name": "27703", "refsource": "BID", "url": "http://www.securityfocus.com/bid/27703" }, { "name": "28915", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28915" }, { "name": "37460", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/37460" }, { "name": "20080208 CVE-2008-0002: Tomcat information disclosure vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/487812/100/0/threaded" }, { "name": "31681", "refsource": "BID", "url": "http://www.securityfocus.com/bid/31681" }, { "name": "28834", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28834" }, { "name": "http://www.vmware.com/security/advisories/VMSA-2009-0016.html", "refsource": "CONFIRM", "url": "http://www.vmware.com/security/advisories/VMSA-2009-0016.html" }, { "name": "ADV-2008-0488", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/0488" }, { "name": "20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/507985/100/0/threaded" }, { "name": "SUSE-SR:2009:004", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html" }, { "name": "http://tomcat.apache.org/security-6.html", "refsource": "CONFIRM", "url": "http://tomcat.apache.org/security-6.html" }, { "name": "57126", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/57126" }, { "name": "32222", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/32222" }, { "name": "FEDORA-2008-1467", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html" }, { "name": "GLSA-200804-10", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200804-10.xml" }, { "name": "FEDORA-2008-1603", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html" }, { "name": "ADV-2008-2780", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/2780" }, { "name": "HPSBST02955", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=139344343412337\u0026w=2" }, { "name": "APPLE-SA-2008-10-09", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html" }, { "name": "http://support.apple.com/kb/HT3216", "refsource": "CONFIRM", "url": "http://support.apple.com/kb/HT3216" }, { "name": "29711", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/29711" }, { "name": "ADV-2009-3316", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2009/3316" } ] } } } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2008-0002", "datePublished": "2008-02-12T00:00:00", "dateReserved": "2007-12-03T00:00:00", "dateUpdated": "2024-08-07T07:32:23.827Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2008-0002\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2008-02-12T01:00:00.000\",\"lastModified\":\"2018-10-15T21:56:25.933\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.\"},{\"lang\":\"es\",\"value\":\"Apache Tomcat 6.0.0 hasta 6.0.15 procesa par\u00e1metros en el contexto de una solicitud err\u00f3nea cuando ocurre una excepci\u00f3n durante el procesamiento del par\u00e1metro, lo cual permite a atacantes remotos obtener informaci\u00f3n sensible, tal como se demostr\u00f3 durante este tratamiento para provocar la excepci\u00f3n.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:N\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\",\"baseScore\":5.8},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1096947-82A6-4EA8-A4F2-00D91E3F7DAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EBFA1D3-16A6-4041-BB30-51D2EE0F2AF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B70B372F-EFFD-4AF7-99B5-7D1B23A0C54C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C95ADA4-66F5-45C4-A677-ACE22367A75A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11951A10-39A2-4FF5-8C43-DF94730FB794\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"351E5BCF-A56B-4D91-BA3C-21A4B77D529A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DC2BBB4-171E-4EFF-A575-A5B7FF031755\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B6B0504-27C1-4824-A928-A878CBBAB32D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE81AD36-ACD1-4C6C-8E7C-5326D1DA3045\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D903956B-14F5-4177-AF12-0A5F1846D3C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81F847DC-A2F5-456C-9038-16A0E85F4C3B\"}]}]}],\"references\":[{\"url\":\"http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=139344343412337\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/28834\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/28915\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/29711\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/32222\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/37460\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/57126\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200804-10.xml\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://securityreason.com/securityalert/3638\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://support.apple.com/kb/HT3216\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://tomcat.apache.org/security-6.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/archive/1/487812/100/0/threaded\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/archive/1/507985/100/0/threaded\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/27703\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/31681\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vmware.com/security/advisories/VMSA-2009-0016.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/0488\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/2780\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2009/3316\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html\",\"source\":\"secalert@redhat.com\"}]}}" } }
rhsa-2008_0151
Vulnerability from csaf_redhat
Published
2008-04-02 20:44
Modified
2024-11-05 16:52
Summary
Red Hat Security Advisory: JBoss Enterprise Application Platform 4.2.0CP02 security update
Notes
Topic
Updated JBoss Enterprise Application Platform (JBEAP) packages that fix
several security issues are now available.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
JBoss Enterprise Application Platform (JBEAP) is a middleware platform for
Java 2 Platform, Enterprise Edition (J2EE) applications.
This release of JBEAP for Red Hat Enterprise Linux 4 contains the JBoss
Application Server and JBoss Seam. This release serves as a replacement to
JBEAP 4.2.0.GA. It fixes several security issues:
The JFreeChart component was vulnerable to multiple cross-site scripting
(XSS) vulnerabilities. An attacker could misuse the image map feature to
inject arbitrary web script, or HTML, via several attributes of the chart
area. (CVE-2007-6306)
A vulnerability caused by exposing static Java methods was located within
the HSQLDB component. This could be utilized by an attacker to execute
arbitrary static Java methods. (CVE-2007-4575)
The setOrder method in the org.jboss.seam.framework.Query class did not
correctly validate user-supplied parameters. This vulnerability allowed
remote attackers to inject, and execute, arbitrary Enterprise JavaBeans
Query Language (EJB QL) commands via the order parameter. (CVE-2007-6433)
These updated packages include bug fixes and enhancements which are not
listed here. For a full list, please refer to the JBEAP 4.2.0CP02 release
notes:
http://redhat.com/docs/manuals/jboss/jboss-eap-4.2.0.cp02/readme.html
Warning: before applying this update, please backup the JBEAP
"server/[configuration]/deploy/" directory, and any other customized
configuration files.
All users of JBEAP on Red Hat Enterprise Linux 4 are advised to upgrade to
these updated packages, which resolve these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated JBoss Enterprise Application Platform (JBEAP) packages that fix\nseveral security issues are now available.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "JBoss Enterprise Application Platform (JBEAP) is a middleware platform for\nJava 2 Platform, Enterprise Edition (J2EE) applications.\n\nThis release of JBEAP for Red Hat Enterprise Linux 4 contains the JBoss\nApplication Server and JBoss Seam. This release serves as a replacement to\nJBEAP 4.2.0.GA. It fixes several security issues:\n\nThe JFreeChart component was vulnerable to multiple cross-site scripting\n(XSS) vulnerabilities. An attacker could misuse the image map feature to\ninject arbitrary web script, or HTML, via several attributes of the chart\narea. (CVE-2007-6306)\n\nA vulnerability caused by exposing static Java methods was located within\nthe HSQLDB component. This could be utilized by an attacker to execute\narbitrary static Java methods. (CVE-2007-4575)\n\nThe setOrder method in the org.jboss.seam.framework.Query class did not\ncorrectly validate user-supplied parameters. This vulnerability allowed\nremote attackers to inject, and execute, arbitrary Enterprise JavaBeans\nQuery Language (EJB QL) commands via the order parameter. (CVE-2007-6433)\n\nThese updated packages include bug fixes and enhancements which are not\nlisted here. For a full list, please refer to the JBEAP 4.2.0CP02 release\nnotes:\nhttp://redhat.com/docs/manuals/jboss/jboss-eap-4.2.0.cp02/readme.html\n\nWarning: before applying this update, please backup the JBEAP\n\"server/[configuration]/deploy/\" directory, and any other customized\nconfiguration files.\n\nAll users of JBEAP on Red Hat Enterprise Linux 4 are advised to upgrade to\nthese updated packages, which resolve these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2008:0151", "url": "https://access.redhat.com/errata/RHSA-2008:0151" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "http://redhat.com/docs/manuals/jboss/jboss-eap-4.2.0.cp02/readme.html", "url": "http://redhat.com/docs/manuals/jboss/jboss-eap-4.2.0.cp02/readme.html" }, { "category": "external", "summary": "299801", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=299801" }, { "category": "external", "summary": "421081", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=421081" }, { "category": "external", "summary": "426206", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=426206" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2008/rhsa-2008_0151.json" } ], "title": "Red Hat Security Advisory: JBoss Enterprise Application Platform 4.2.0CP02 security update", "tracking": { "current_release_date": "2024-11-05T16:52:31+00:00", "generator": { "date": "2024-11-05T16:52:31+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2008:0151", "initial_release_date": "2008-04-02T20:44:00+00:00", "revision_history": [ { "date": "2008-04-02T20:44:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2008-04-02T16:44:45+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T16:52:31+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product": { "name": "Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP", "product_identification_helper": { "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:4.2.0::el4" } } }, { "category": "product_name", "name": "Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product": { "name": "Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP", "product_identification_helper": { "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:4.2.0::el4" } } } ], "category": "product_family", "name": "Red Hat JBoss Enterprise Application Platform" }, { "branches": [ { "category": "product_version", "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "product": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "product_id": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-aop@1.5.5-1.CP01.0jpp.ep1.1.el4?arch=src" } } }, { "category": "product_version", "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "product": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "product_id": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache@1.4.1-4.SP8_CP01.1jpp.ep1.1.el4?arch=src" } } }, { "category": "product_version", "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "product": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "product_id": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3@3.2.4-1.SP1_CP02.0jpp.ep1.1.el4?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "product": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "product_id": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-wsconsume-impl@2.0.0-0jpp.ep1.3?arch=src" } } }, { "category": "product_version", "name": "jboss-common-0:1.2.1-0jpp.ep1.2.src", "product": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.src", "product_id": "jboss-common-0:1.2.1-0jpp.ep1.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common@1.2.1-0jpp.ep1.2?arch=src" } } }, { "category": "product_version", "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "product": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "product_id": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-remoting@2.2.2-3.SP4.0jpp.ep1.1?arch=src" } } }, { "category": "product_version", "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.src", "product": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.src", "product_id": "jboss-seam-0:1.2.1-1.ep1.3.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.3.el4?arch=src" } } }, { "category": "product_version", "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "product": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "product_id": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-jboss42@1.2.1-0jpp.ep1.2.el4?arch=src" } } }, { "category": "product_version", "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.src", "product": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.src", "product_id": "wsdl4j-0:1.6.2-1jpp.ep1.8.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/wsdl4j@1.6.2-1jpp.ep1.8?arch=src" } } }, { "category": "product_version", "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "product": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "product_id": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jsf@1.2_04-1.p02.0jpp.ep1.18?arch=src" } } }, { "category": "product_version", "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "product": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "product_id": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations@3.2.1-1.patch02.1jpp.ep1.2.el4?arch=src" } } }, { "category": "product_version", "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "product": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "product_id": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas@4.2.0-3.GA_CP02.ep1.3.el4?arch=src" } } }, { "category": "product_version", "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "product": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "product_id": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jfreechart@1.0.9-1jpp.ep1.2.el4?arch=src" } } }, { "category": "product_version", "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "product": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "product_id": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/concurrent@1.3.4-7jpp.ep1.6.el4?arch=src" } } }, { "category": "product_version", "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "product": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "product_id": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-javamail@1.4.0-0jpp.ep1.8?arch=src" } } }, { "category": "product_version", "name": "jacorb-0:2.3.0-1jpp.ep1.4.src", "product": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.src", "product_id": "jacorb-0:2.3.0-1jpp.ep1.4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb@2.3.0-1jpp.ep1.4?arch=src" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "product": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "product_id": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager@3.2.1-1jpp.ep1.6.el4?arch=src" } } }, { "category": "product_version", "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "product": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "product_id": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossxb@1.0.0-2.SP1.0jpp.ep1.2.el4?arch=src" } } }, { "category": "product_version", "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "product": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "product_id": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jcommon@1.0.12-1jpp.ep1.2.el4?arch=src" } } }, { "category": "product_version", "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "product": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "product_id": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb@2.0.0-3.CP05.0jpp.ep1.1?arch=src" } } }, { "category": "product_version", "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "product": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "product_id": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hsqldb@1.8.0.8-2.patch01.1jpp.ep1.1?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "product": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "product_id": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs@4.2.0-3.GA_CP02.ep1.1.el4?arch=src" } } }, { "category": "product_version", "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "product": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "product_id": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jaf@1.1.0-0jpp.ep1.10.el4?arch=src" } } }, { "category": "product_version", "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "product": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "product_id": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jstl@1.2.0-0jpp.ep1.2?arch=src" } } }, { "category": "product_version", "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "product": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "product_id": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jgroups@2.4.1-1.SP4.0jpp.ep1.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "product": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "product_id": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-aop@1.5.5-1.CP01.0jpp.ep1.1.el4?arch=noarch" } } }, { "category": "product_version", "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "product": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "product_id": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache@1.4.1-4.SP8_CP01.1jpp.ep1.1.el4?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product_id": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3@3.2.4-1.SP1_CP02.0jpp.ep1.1.el4?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product": { "name": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product_id": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-javadoc@3.2.4-1.SP1_CP02.0jpp.ep1.1.el4?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "product": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "product_id": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-wsconsume-impl@2.0.0-0jpp.ep1.3?arch=noarch" } } }, { "category": "product_version", "name": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "product": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "product_id": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common@1.2.1-0jpp.ep1.2?arch=noarch" } } }, { "category": "product_version", "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "product": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "product_id": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-remoting@2.2.2-3.SP4.0jpp.ep1.1?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "product": { "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "product_id": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam-docs@1.2.1-1.ep1.3.el4?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "product": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "product_id": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.3.el4?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "product": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "product_id": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-jboss42@1.2.1-0jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "product": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "product_id": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/wsdl4j@1.6.2-1jpp.ep1.8?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "product": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "product_id": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jsf@1.2_04-1.p02.0jpp.ep1.18?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product_id": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations@3.2.1-1.patch02.1jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product": { "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product_id": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations-javadoc@3.2.1-1.patch02.1jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "product": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "product_id": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas@4.2.0-3.GA_CP02.ep1.3.el4?arch=noarch" } } }, { "category": "product_version", "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "product": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "product_id": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jfreechart@1.0.9-1jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "product": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "product_id": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/concurrent@1.3.4-7jpp.ep1.6.el4?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "product": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "product_id": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-javamail@1.4.0-0jpp.ep1.8?arch=noarch" } } }, { "category": "product_version", "name": "jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "product": { "name": "jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "product_id": "jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb-manual@2.3.0-1jpp.ep1.4?arch=noarch" } } }, { "category": "product_version", "name": "jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "product": { "name": "jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "product_id": "jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb-demo@2.3.0-1jpp.ep1.4?arch=noarch" } } }, { "category": "product_version", "name": "jacorb-0:2.3.0-1jpp.ep1.4.noarch", "product": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.noarch", "product_id": "jacorb-0:2.3.0-1jpp.ep1.4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb@2.3.0-1jpp.ep1.4?arch=noarch" } } }, { "category": "product_version", "name": "jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "product": { "name": "jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "product_id": "jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb-javadoc@2.3.0-1jpp.ep1.4?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "product": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "product_id": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager@3.2.1-1jpp.ep1.6.el4?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "product": { "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "product_id": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager-javadoc@3.2.1-1jpp.ep1.6.el4?arch=noarch" } } }, { "category": "product_version", "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "product": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "product_id": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossxb@1.0.0-2.SP1.0jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "product": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "product_id": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jcommon@1.0.12-1jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "product": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "product_id": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb@2.0.0-3.CP05.0jpp.ep1.1?arch=noarch" } } }, { "category": "product_version", "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "product": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "product_id": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hsqldb@1.8.0.8-2.patch01.1jpp.ep1.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product": { "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product_id": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs-examples@4.2.0-3.GA_CP02.ep1.1.el4?arch=noarch" } } }, { "category": "product_version", "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product_id": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs@4.2.0-3.GA_CP02.ep1.1.el4?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "product": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "product_id": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jaf@1.1.0-0jpp.ep1.10.el4?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "product": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "product_id": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jstl@1.2.0-0jpp.ep1.2?arch=noarch" } } }, { "category": "product_version", "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "product": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "product_id": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jgroups@2.4.1-1.SP4.0jpp.ep1.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch" }, "product_reference": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src" }, "product_reference": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch" }, "product_reference": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src" }, "product_reference": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch" }, "product_reference": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src" }, "product_reference": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch" }, "product_reference": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src" }, "product_reference": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch" }, "product_reference": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch" }, "product_reference": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch" }, "product_reference": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch" }, "product_reference": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src" }, "product_reference": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch" }, "product_reference": "jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch" }, "product_reference": "jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch" }, "product_reference": "jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch" }, "product_reference": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch" }, "product_reference": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src" }, "product_reference": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" }, "product_reference": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch" }, "product_reference": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 AS", "product_id": "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" }, "product_reference": "wsdl4j-0:1.6.2-1jpp.ep1.8.src", "relates_to_product_reference": "4AS-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch" }, "product_reference": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src" }, "product_reference": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch" }, "product_reference": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src" }, "product_reference": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch" }, "product_reference": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src" }, "product_reference": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch" }, "product_reference": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src" }, "product_reference": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch" }, "product_reference": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch" }, "product_reference": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch" }, "product_reference": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch" }, "product_reference": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src" }, "product_reference": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch" }, "product_reference": "jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch" }, "product_reference": "jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch" }, "product_reference": "jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch" }, "product_reference": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch" }, "product_reference": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src" }, "product_reference": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" }, "product_reference": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch" }, "product_reference": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "relates_to_product_reference": "4ES-JBEAP" }, { "category": "default_component_of", "full_product_name": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 4 ES", "product_id": "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" }, "product_reference": "wsdl4j-0:1.6.2-1jpp.ep1.8.src", "relates_to_product_reference": "4ES-JBEAP" } ] }, "vulnerabilities": [ { "cve": "CVE-2007-4575", "discovery_date": "2007-09-17T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "299801" } ], "notes": [ { "category": "description", "text": "HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to \"exposing static java methods.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenOffice.org-base allows Denial-of-Service and command injection", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" ], "known_not_affected": [ "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-4575" }, { "category": "external", "summary": "RHBZ#299801", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=299801" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-4575", "url": "https://www.cve.org/CVERecord?id=CVE-2007-4575" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-4575", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4575" } ], "release_date": "2007-12-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-04-02T20:44:00+00:00", "details": "A complete installation guide for this new release is linked to in the\nReferences section below.\n\nBefore installing this upgrade, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains\nthe desired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0151" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenOffice.org-base allows Denial-of-Service and command injection" }, { "cve": "CVE-2007-5461", "discovery_date": "2007-10-14T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "333791" } ], "notes": [ { "category": "description", "text": "Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.", "title": "Vulnerability description" }, { "category": "summary", "text": "Absolute path traversal Apache Tomcat WEBDAV", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" ], "known_not_affected": [ "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-5461" }, { "category": "external", "summary": "RHBZ#333791", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=333791" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-5461", "url": "https://www.cve.org/CVERecord?id=CVE-2007-5461" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5461", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5461" } ], "release_date": "2007-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-04-02T20:44:00+00:00", "details": "A complete installation guide for this new release is linked to in the\nReferences section below.\n\nBefore installing this upgrade, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains\nthe desired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0151" } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "Absolute path traversal Apache Tomcat WEBDAV" }, { "cve": "CVE-2007-6306", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2007-12-11T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "421081" } ], "notes": [ { "category": "description", "text": "Multiple cross-site scripting (XSS) vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) chart name or (2) chart tool tip text; or the (3) href, (4) shape, or (5) coords attribute of a chart area.", "title": "Vulnerability description" }, { "category": "summary", "text": "JFreeChart: XSS vulnerabilities in the image map feature", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" ], "known_not_affected": [ "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-6306" }, { "category": "external", "summary": "RHBZ#421081", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=421081" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-6306", "url": "https://www.cve.org/CVERecord?id=CVE-2007-6306" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-6306", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-6306" } ], "release_date": "2007-12-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-04-02T20:44:00+00:00", "details": "A complete installation guide for this new release is linked to in the\nReferences section below.\n\nBefore installing this upgrade, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains\nthe desired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0151" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JFreeChart: XSS vulnerabilities in the image map feature" }, { "cve": "CVE-2007-6433", "discovery_date": "2007-12-19T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "426206" } ], "notes": [ { "category": "description", "text": "The getRenderedEjbql method in the org.jboss.seam.framework.Query class in JBoss Seam 2.x before 2.0.0.CR3 allows remote attackers to inject and execute arbitrary EJBQL commands via the order parameter.", "title": "Vulnerability description" }, { "category": "summary", "text": "EJBQL injection via \u0027order\u0027 parameter", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" ], "known_not_affected": [ "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-6433" }, { "category": "external", "summary": "RHBZ#426206", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=426206" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-6433", "url": "https://www.cve.org/CVERecord?id=CVE-2007-6433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-6433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-6433" } ], "release_date": "2007-12-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-04-02T20:44:00+00:00", "details": "A complete installation guide for this new release is linked to in the\nReferences section below.\n\nBefore installing this upgrade, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains\nthe desired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0151" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "EJBQL injection via \u0027order\u0027 parameter" }, { "cve": "CVE-2008-0002", "discovery_date": "2008-02-08T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "432327" } ], "notes": [ { "category": "description", "text": "Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.", "title": "Vulnerability description" }, { "category": "summary", "text": "Tomcat information disclosure vulnerability", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" ], "known_not_affected": [ "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-JBEAP:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-JBEAP:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-JBEAP:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-JBEAP:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-JBEAP:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-JBEAP:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-JBEAP:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-0002" }, { "category": "external", "summary": "RHBZ#432327", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=432327" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-0002", "url": "https://www.cve.org/CVERecord?id=CVE-2008-0002" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-0002", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-0002" } ], "release_date": "2008-02-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-04-02T20:44:00+00:00", "details": "A complete installation guide for this new release is linked to in the\nReferences section below.\n\nBefore installing this upgrade, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains\nthe desired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-JBEAP:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-JBEAP:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-JBEAP:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-JBEAP:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-JBEAP:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-JBEAP:jacorb-demo-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-javadoc-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jacorb-manual-0:2.3.0-1jpp.ep1.4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-JBEAP:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-JBEAP:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-JBEAP:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-JBEAP:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-JBEAP:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-JBEAP:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-JBEAP:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-JBEAP:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-JBEAP:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-JBEAP:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0151" } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "Tomcat information disclosure vulnerability" } ] }
rhsa-2008_0213
Vulnerability from csaf_redhat
Published
2008-04-02 20:42
Modified
2024-11-05 16:54
Summary
Red Hat Security Advisory: JBoss Enterprise Application Platform 4.2.0CP02 security update
Notes
Topic
New JBoss Enterprise Application Platform (JBEAP) packages, comprising the
4.2.0.CP02 release, are now available for Red Hat Enterprise Linux 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
JBEAP is a middleware platform for Java 2 Platform, Enterprise Edition
(J2EE) applications.
This release of JBEAP for Red Hat Enterprise Linux 5 contains the JBoss
Application Server and JBoss Seam and serves as a replacement for JBEAP
4.2.0.GA_CP01. As well as fixing numerous bugs and adding enhancements,
these updated packages addresses several security issues.
The JFreeChart component was vulnerable to multiple cross-site scripting
(XSS) vulnerabilities. An attacker could misuse the image map feature to
inject arbitrary web script or HTML via several attributes of the chart
area. (CVE-2007-6306)
A vulnerability caused by exposing static java methods was located within
the HSQLDB component. This could be utilized by an attacker to execute
arbitrary static java methods. (CVE-2007-4575)
The setOrder method in the org.jboss.seam.framework.Query class did not
properly validate user-supplied parameters. This vulnerability allowed
remote attackers to inject and execute arbitrary EJBQL commands via the
order parameter. (CVE-2007-6433)
For details regarding the bug fixes and enhancements included with this
update, please see the JBoss Enterprise Application Platform 4.2.0.CP02
Release Notes, linked to in the References section below.
All Red Hat Enterprise Linux 5 users wanting to use the JBoss Enterprise
Application Platform are advised to install these new packages.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "New JBoss Enterprise Application Platform (JBEAP) packages, comprising the\n4.2.0.CP02 release, are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "JBEAP is a middleware platform for Java 2 Platform, Enterprise Edition\n(J2EE) applications.\n\nThis release of JBEAP for Red Hat Enterprise Linux 5 contains the JBoss\nApplication Server and JBoss Seam and serves as a replacement for JBEAP\n4.2.0.GA_CP01. As well as fixing numerous bugs and adding enhancements,\nthese updated packages addresses several security issues.\n\nThe JFreeChart component was vulnerable to multiple cross-site scripting\n(XSS) vulnerabilities. An attacker could misuse the image map feature to\ninject arbitrary web script or HTML via several attributes of the chart\narea. (CVE-2007-6306)\n\nA vulnerability caused by exposing static java methods was located within\nthe HSQLDB component. This could be utilized by an attacker to execute\narbitrary static java methods. (CVE-2007-4575)\n\nThe setOrder method in the org.jboss.seam.framework.Query class did not\nproperly validate user-supplied parameters. This vulnerability allowed\nremote attackers to inject and execute arbitrary EJBQL commands via the\norder parameter. (CVE-2007-6433)\n\nFor details regarding the bug fixes and enhancements included with this\nupdate, please see the JBoss Enterprise Application Platform 4.2.0.CP02\nRelease Notes, linked to in the References section below.\n\nAll Red Hat Enterprise Linux 5 users wanting to use the JBoss Enterprise\nApplication Platform are advised to install these new packages.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2008:0213", "url": "https://access.redhat.com/errata/RHSA-2008:0213" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "http://redhat.com/docs/manuals/jboss/jboss-eap-4.2.0.cp02/readme.html", "url": "http://redhat.com/docs/manuals/jboss/jboss-eap-4.2.0.cp02/readme.html" }, { "category": "external", "summary": "299801", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=299801" }, { "category": "external", "summary": "421081", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=421081" }, { "category": "external", "summary": "426206", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=426206" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2008/rhsa-2008_0213.json" } ], "title": "Red Hat Security Advisory: JBoss Enterprise Application Platform 4.2.0CP02 security update", "tracking": { "current_release_date": "2024-11-05T16:54:04+00:00", "generator": { "date": "2024-11-05T16:54:04+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2008:0213", "initial_release_date": "2008-04-02T20:42:00+00:00", "revision_history": [ { "date": "2008-04-02T20:42:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2008-04-02T16:42:53+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T16:54:04+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product": { "name": "Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0", "product_identification_helper": { "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:4.2.0::el5" } } } ], "category": "product_family", "name": "Red Hat JBoss Enterprise Application Platform" }, { "branches": [ { "category": "product_version", "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "product": { "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "product_id": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/concurrent@1.3.4-8jpp.ep1.6.el5.1?arch=src" } } }, { "category": "product_version", "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "product": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "product_id": "glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jaf@1.1.0-0jpp.ep1.9.el5?arch=src" } } }, { "category": "product_version", "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "product": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "product_id": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-javamail@1.4.0-0jpp.ep1.8.el5?arch=src" } } }, { "category": "product_version", "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "product": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "product_id": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jsf@1.2_04-1.p02.0jpp.ep1.18.el5?arch=src" } } }, { "category": "product_version", "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "product": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "product_id": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jstl@1.2.0-0jpp.ep1.2.el5?arch=src" } } }, { "category": "product_version", "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "product": { "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "product_id": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3@3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1?arch=src" } } }, { "category": "product_version", "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "product": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "product_id": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations@3.2.1-1.patch02.1jpp.ep1.2.el5.1?arch=src" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "product": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "product_id": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager@3.2.1-1jpp.ep1.6.el5?arch=src" } } }, { "category": "product_version", "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "product": { "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "product_id": "jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb@2.3.0-1jpp.ep1.5.el5?arch=src" } } }, { "category": "product_version", "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "product": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "product_id": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-aop@1.5.5-1.CP01.0jpp.ep1.1.el5?arch=src" } } }, { "category": "product_version", "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "product": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "product_id": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache@1.4.1-4.SP8_CP01.1jpp.ep1.1.el5?arch=src" } } }, { "category": "product_version", "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "product": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "product_id": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common@1.2.1-0jpp.ep1.2.el5.1?arch=src" } } }, { "category": "product_version", "name": "jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "product": { "name": "jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "product_id": "jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jbpm-bpel@1.1.0-0jpp.ep1.3.el5?arch=src" } } }, { "category": "product_version", "name": "jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "product": { "name": "jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "product_id": "jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jbpm-jpdl@3.2.0-0jpp.ep1.6.el5?arch=src" } } }, { "category": "product_version", "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "product": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "product_id": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-remoting@2.2.2-3.SP4.0jpp.ep1.1.el5?arch=src" } } }, { "category": "product_version", "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.src", "product": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.src", "product_id": "jboss-seam-0:1.2.1-1.ep1.3.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.3.el5?arch=src" } } }, { "category": "product_version", "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "product": { "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "product_id": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas@4.2.0-4.GA_CP02.ep1.3.el5.3?arch=src" } } }, { "category": "product_version", "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "product": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "product_id": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb@2.0.0-3.CP05.0jpp.ep1.1.el5?arch=src" } } }, { "category": "product_version", "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "product": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "product_id": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-jboss42@1.2.1-0jpp.ep1.2.el5.1?arch=src" } } }, { "category": "product_version", "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "product": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "product_id": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-wsconsume-impl@2.0.0-0jpp.ep1.3.el5?arch=src" } } }, { "category": "product_version", "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "product": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "product_id": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossxb@1.0.0-2.SP1.0jpp.ep1.2.el5.1?arch=src" } } }, { "category": "product_version", "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "product": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "product_id": "jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jcommon@1.0.12-1jpp.ep1.2.el5?arch=src" } } }, { "category": "product_version", "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "product": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "product_id": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jfreechart@1.0.9-1jpp.ep1.2.el5.1?arch=src" } } }, { "category": "product_version", "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "product": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "product_id": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jgroups@2.4.1-1.SP4.0jpp.ep1.2.el5?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "product": { "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "product_id": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/juddi@0.9-0.rc4.2jpp.ep1.3.el5.1?arch=src" } } }, { "category": "product_version", "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "product": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "product_id": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs@4.2.0-3.GA_CP02.ep1.1.el5.1?arch=src" } } }, { "category": "product_version", "name": "ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src", "product": { "name": "ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src", "product_id": "ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/ws-commons-policy@1.0-2jpp.ep1.4.el5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "product": { "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "product_id": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/concurrent@1.3.4-8jpp.ep1.6.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "product": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "product_id": "glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jaf@1.1.0-0jpp.ep1.9.el5?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "product": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "product_id": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-javamail@1.4.0-0jpp.ep1.8.el5?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "product": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "product_id": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jsf@1.2_04-1.p02.0jpp.ep1.18.el5?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "product": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "product_id": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jstl@1.2.0-0jpp.ep1.2.el5?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product": { "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product_id": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3@3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product": { "name": "hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product_id": "hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-javadoc@3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product_id": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations@3.2.1-1.patch02.1jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product": { "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product_id": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations-javadoc@3.2.1-1.patch02.1jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "product": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "product_id": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager@3.2.1-1jpp.ep1.6.el5?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "product": { "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "product_id": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager-javadoc@3.2.1-1jpp.ep1.6.el5?arch=noarch" } } }, { "category": "product_version", "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "product": { "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "product_id": "jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb@2.3.0-1jpp.ep1.5.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "product": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "product_id": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-aop@1.5.5-1.CP01.0jpp.ep1.1.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "product": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "product_id": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache@1.4.1-4.SP8_CP01.1jpp.ep1.1.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product_id": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common@1.2.1-0jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "product": { "name": "jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "product_id": "jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jbpm-bpel@1.1.0-0jpp.ep1.3.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "product": { "name": "jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "product_id": "jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jbpm-jpdl@3.2.0-0jpp.ep1.6.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "product": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "product_id": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-remoting@2.2.2-3.SP4.0jpp.ep1.1.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "product": { "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "product_id": "jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam-docs@1.2.1-1.ep1.3.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "product": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "product_id": "jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.3.el5?arch=noarch" } } }, { "category": "product_version", "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "product": { "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "product_id": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas@4.2.0-4.GA_CP02.ep1.3.el5.3?arch=noarch" } } }, { "category": "product_version", "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "product": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "product_id": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb@2.0.0-3.CP05.0jpp.ep1.1.el5?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product_id": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-jboss42@1.2.1-0jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "product": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "product_id": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-wsconsume-impl@2.0.0-0jpp.ep1.3.el5?arch=noarch" } } }, { "category": "product_version", "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "product": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "product_id": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossxb@1.0.0-2.SP1.0jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "product": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "product_id": "jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jcommon@1.0.12-1jpp.ep1.2.el5?arch=noarch" } } }, { "category": "product_version", "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "product": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "product_id": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jfreechart@1.0.9-1jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "product": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "product_id": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jgroups@2.4.1-1.SP4.0jpp.ep1.2.el5?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "product": { "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "product_id": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/juddi@0.9-0.rc4.2jpp.ep1.3.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product_id": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs@4.2.0-3.GA_CP02.ep1.1.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product": { "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product_id": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs-examples@4.2.0-3.GA_CP02.ep1.1.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "product": { "name": "ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "product_id": "ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/ws-commons-policy@1.0-2jpp.ep1.4.el5?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch" }, "product_reference": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src" }, "product_reference": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch" }, "product_reference": "glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src" }, "product_reference": "glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch" }, "product_reference": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src" }, "product_reference": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch" }, "product_reference": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src" }, "product_reference": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch" }, "product_reference": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch" }, "product_reference": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch" }, "product_reference": "hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch" }, "product_reference": "jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src" }, "product_reference": "jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch" }, "product_reference": "jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src" }, "product_reference": "jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch" }, "product_reference": "jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch" }, "product_reference": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src" }, "product_reference": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch" }, "product_reference": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src" }, "product_reference": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" }, "product_reference": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch" }, "product_reference": "ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "relates_to_product_reference": "5Server-JBEAP-4.2.0" }, { "category": "default_component_of", "full_product_name": { "name": "ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src as a component of Red Hat JBoss Enterprise Application Platform 4.2.0 for RHEL 5 Server", "product_id": "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" }, "product_reference": "ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src", "relates_to_product_reference": "5Server-JBEAP-4.2.0" } ] }, "vulnerabilities": [ { "cve": "CVE-2007-4575", "discovery_date": "2007-09-17T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "299801" } ], "notes": [ { "category": "description", "text": "HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to \"exposing static java methods.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenOffice.org-base allows Denial-of-Service and command injection", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ], "known_not_affected": [ "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-4575" }, { "category": "external", "summary": "RHBZ#299801", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=299801" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-4575", "url": "https://www.cve.org/CVERecord?id=CVE-2007-4575" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-4575", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4575" } ], "release_date": "2007-12-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-04-02T20:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0213" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenOffice.org-base allows Denial-of-Service and command injection" }, { "cve": "CVE-2007-5461", "discovery_date": "2007-10-14T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "333791" } ], "notes": [ { "category": "description", "text": "Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.", "title": "Vulnerability description" }, { "category": "summary", "text": "Absolute path traversal Apache Tomcat WEBDAV", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ], "known_not_affected": [ "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-5461" }, { "category": "external", "summary": "RHBZ#333791", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=333791" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-5461", "url": "https://www.cve.org/CVERecord?id=CVE-2007-5461" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5461", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5461" } ], "release_date": "2007-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-04-02T20:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0213" } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "Absolute path traversal Apache Tomcat WEBDAV" }, { "cve": "CVE-2007-6306", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2007-12-11T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "421081" } ], "notes": [ { "category": "description", "text": "Multiple cross-site scripting (XSS) vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) chart name or (2) chart tool tip text; or the (3) href, (4) shape, or (5) coords attribute of a chart area.", "title": "Vulnerability description" }, { "category": "summary", "text": "JFreeChart: XSS vulnerabilities in the image map feature", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ], "known_not_affected": [ "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-6306" }, { "category": "external", "summary": "RHBZ#421081", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=421081" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-6306", "url": "https://www.cve.org/CVERecord?id=CVE-2007-6306" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-6306", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-6306" } ], "release_date": "2007-12-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-04-02T20:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0213" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JFreeChart: XSS vulnerabilities in the image map feature" }, { "cve": "CVE-2007-6433", "discovery_date": "2007-12-19T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "426206" } ], "notes": [ { "category": "description", "text": "The getRenderedEjbql method in the org.jboss.seam.framework.Query class in JBoss Seam 2.x before 2.0.0.CR3 allows remote attackers to inject and execute arbitrary EJBQL commands via the order parameter.", "title": "Vulnerability description" }, { "category": "summary", "text": "EJBQL injection via \u0027order\u0027 parameter", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ], "known_not_affected": [ "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-6433" }, { "category": "external", "summary": "RHBZ#426206", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=426206" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-6433", "url": "https://www.cve.org/CVERecord?id=CVE-2007-6433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-6433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-6433" } ], "release_date": "2007-12-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-04-02T20:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0213" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "EJBQL injection via \u0027order\u0027 parameter" }, { "cve": "CVE-2008-0002", "discovery_date": "2008-02-08T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "432327" } ], "notes": [ { "category": "description", "text": "Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.", "title": "Vulnerability description" }, { "category": "summary", "text": "Tomcat information disclosure vulnerability", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ], "known_not_affected": [ "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-JBEAP-4.2.0:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jaf-0:1.1.0-0jpp.ep1.9.el5.src", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-javamail-0:1.4.0-0jpp.ep1.8.el5.src", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-bpel-0:1.1.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.noarch", "5Server-JBEAP-4.2.0:jboss-jbpm-jpdl-0:3.2.0-0jpp.ep1.6.el5.src", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-JBEAP-4.2.0:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.noarch", "5Server-JBEAP-4.2.0:ws-commons-policy-0:1.0-2jpp.ep1.4.el5.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-0002" }, { "category": "external", "summary": "RHBZ#432327", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=432327" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-0002", "url": "https://www.cve.org/CVERecord?id=CVE-2008-0002" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-0002", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-0002" } ], "release_date": "2008-02-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-04-02T20:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-JBEAP-4.2.0:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-JBEAP-4.2.0:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-JBEAP-4.2.0:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-JBEAP-4.2.0:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-JBEAP-4.2.0:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-JBEAP-4.2.0:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-JBEAP-4.2.0:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-JBEAP-4.2.0:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0213" } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "Tomcat information disclosure vulnerability" } ] }
rhsa-2008_0158
Vulnerability from csaf_redhat
Published
2008-03-24 22:16
Modified
2024-11-05 16:53
Summary
Red Hat Security Advisory: JBoss Enterprise Application Platform security update
Notes
Topic
Updated JBoss Enterprise Application Platform packages that fix several
security issues and bugs are now available for Red Hat Application Stack v1
and v2.
This update has been rated as having moderate security impact by the Red Hat
Security Response Team.
Details
JBEAP is a middleware platform for Java 2 Platform, Enterprise Edition
(J2EE) applications.
This release of JBEAP for Red Hat Enterprise Linux 4 contains the JBoss
Application Server and JBoss Seam. This release serves as a replacement to
JBEAP 4.2.0.GA.
The updated packages address the following security vulnerabilities:
* the JFreeChart component was vulnerable to multiple cross-site scripting
(XSS) vulnerabilities. An attacker could misuse the image map feature to
inject arbitrary web script or HTML via several attributes of the chart
area. (CVE-2007-6306)
* a vulnerability caused by exposing static java methods was located within
the HSQLDB component. This could be utilized by an attacker to execute
arbitrary static java methods. (CVE-2007-4575)
* the setOrder method in the org.jboss.seam.framework.Query class did not
properly validate user-supplied parameters. This vulnerability allowed
remote attackers to inject and execute arbitrary EJBQL commands via the
order parameter. (CVE-2007-6433)
All users are advised to upgrade to this release of JBEAP, which addresses
these vulnerabilities.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated JBoss Enterprise Application Platform packages that fix several\nsecurity issues and bugs are now available for Red Hat Application Stack v1\nand v2.\n\nThis update has been rated as having moderate security impact by the Red Hat\nSecurity Response Team.", "title": "Topic" }, { "category": "general", "text": "JBEAP is a middleware platform for Java 2 Platform, Enterprise Edition\n(J2EE) applications.\n\nThis release of JBEAP for Red Hat Enterprise Linux 4 contains the JBoss\nApplication Server and JBoss Seam. This release serves as a replacement to\nJBEAP 4.2.0.GA.\n\nThe updated packages address the following security vulnerabilities:\n\n* the JFreeChart component was vulnerable to multiple cross-site scripting\n(XSS) vulnerabilities. An attacker could misuse the image map feature to\ninject arbitrary web script or HTML via several attributes of the chart\narea. (CVE-2007-6306)\n\n* a vulnerability caused by exposing static java methods was located within\nthe HSQLDB component. This could be utilized by an attacker to execute\narbitrary static java methods. (CVE-2007-4575)\n\n* the setOrder method in the org.jboss.seam.framework.Query class did not\nproperly validate user-supplied parameters. This vulnerability allowed\nremote attackers to inject and execute arbitrary EJBQL commands via the\norder parameter. (CVE-2007-6433)\n\nAll users are advised to upgrade to this release of JBEAP, which addresses\nthese vulnerabilities.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2008:0158", "url": "https://access.redhat.com/errata/RHSA-2008:0158" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "http://www.redhat.com/docs/manuals/jboss/jboss-eap-4.2.0.cp02/readme.html", "url": "http://www.redhat.com/docs/manuals/jboss/jboss-eap-4.2.0.cp02/readme.html" }, { "category": "external", "summary": "https://rhstack.108.redhat.com/docs/Red_Hat_Application_Stack_V.1.2_Release_Notes.html", "url": "https://rhstack.108.redhat.com/docs/Red_Hat_Application_Stack_V.1.2_Release_Notes.html" }, { "category": "external", "summary": "299801", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=299801" }, { "category": "external", "summary": "421081", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=421081" }, { "category": "external", "summary": "426206", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=426206" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2008/rhsa-2008_0158.json" } ], "title": "Red Hat Security Advisory: JBoss Enterprise Application Platform security update", "tracking": { "current_release_date": "2024-11-05T16:53:04+00:00", "generator": { "date": "2024-11-05T16:53:04+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2008:0158", "initial_release_date": "2008-03-24T22:16:00+00:00", "revision_history": [ { "date": "2008-03-24T22:16:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2008-03-24T18:16:50+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T16:53:04+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product": { "name": "Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_application_stack:2" } } }, { "category": "product_name", "name": "Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product": { "name": "Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_application_stack:1" } } }, { "category": "product_name", "name": "Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product": { "name": "Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_application_stack:1" } } } ], "category": "product_family", "name": "Red Hat Application Stack" }, { "branches": [ { "category": "product_version", "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "product": { "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "product_id": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/concurrent@1.3.4-8jpp.ep1.6.el5.1?arch=src" } } }, { "category": "product_version", "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "product": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "product_id": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jsf@1.2_04-1.p02.0jpp.ep1.18.el5?arch=src" } } }, { "category": "product_version", "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "product": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "product_id": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jstl@1.2.0-0jpp.ep1.2.el5?arch=src" } } }, { "category": "product_version", "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "product": { "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "product_id": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3@3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1?arch=src" } } }, { "category": "product_version", "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "product": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "product_id": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations@3.2.1-1.patch02.1jpp.ep1.2.el5.1?arch=src" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "product": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "product_id": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager@3.2.1-1jpp.ep1.6.el5?arch=src" } } }, { "category": "product_version", "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "product": { "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "product_id": "jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb@2.3.0-1jpp.ep1.5.el5?arch=src" } } }, { "category": "product_version", "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "product": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "product_id": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-aop@1.5.5-1.CP01.0jpp.ep1.1.el5?arch=src" } } }, { "category": "product_version", "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "product": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "product_id": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache@1.4.1-4.SP8_CP01.1jpp.ep1.1.el5?arch=src" } } }, { "category": "product_version", "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "product": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "product_id": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common@1.2.1-0jpp.ep1.2.el5.1?arch=src" } } }, { "category": "product_version", "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "product": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "product_id": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-remoting@2.2.2-3.SP4.0jpp.ep1.1.el5?arch=src" } } }, { "category": "product_version", "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.src", "product": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.src", "product_id": "jboss-seam-0:1.2.1-1.ep1.3.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.3.el5?arch=src" } } }, { "category": "product_version", "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "product": { "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "product_id": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas@4.2.0-4.GA_CP02.ep1.3.el5.3?arch=src" } } }, { "category": "product_version", "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "product": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "product_id": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb@2.0.0-3.CP05.0jpp.ep1.1.el5?arch=src" } } }, { "category": "product_version", "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "product": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "product_id": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-jboss42@1.2.1-0jpp.ep1.2.el5.1?arch=src" } } }, { "category": "product_version", "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "product": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "product_id": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-wsconsume-impl@2.0.0-0jpp.ep1.3.el5?arch=src" } } }, { "category": "product_version", "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "product": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "product_id": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossxb@1.0.0-2.SP1.0jpp.ep1.2.el5.1?arch=src" } } }, { "category": "product_version", "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "product": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "product_id": "jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jcommon@1.0.12-1jpp.ep1.2.el5?arch=src" } } }, { "category": "product_version", "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "product": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "product_id": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jfreechart@1.0.9-1jpp.ep1.2.el5.1?arch=src" } } }, { "category": "product_version", "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "product": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "product_id": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jgroups@2.4.1-1.SP4.0jpp.ep1.2.el5?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "product": { "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "product_id": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/juddi@0.9-0.rc4.2jpp.ep1.3.el5.1?arch=src" } } }, { "category": "product_version", "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "product": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "product_id": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs@4.2.0-3.GA_CP02.ep1.1.el5.1?arch=src" } } }, { "category": "product_version", "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "product": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "product_id": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/concurrent@1.3.4-7jpp.ep1.6.el4?arch=src" } } }, { "category": "product_version", "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "product": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "product_id": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jaf@1.1.0-0jpp.ep1.10.el4?arch=src" } } }, { "category": "product_version", "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "product": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "product_id": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-javamail@1.4.0-0jpp.ep1.8?arch=src" } } }, { "category": "product_version", "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "product": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "product_id": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jsf@1.2_04-1.p02.0jpp.ep1.18?arch=src" } } }, { "category": "product_version", "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "product": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "product_id": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jstl@1.2.0-0jpp.ep1.2?arch=src" } } }, { "category": "product_version", "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "product": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "product_id": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3@3.2.4-1.SP1_CP02.0jpp.ep1.1.el4?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "product": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "product_id": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations@3.2.1-1.patch02.1jpp.ep1.2.el4?arch=src" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "product": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "product_id": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager@3.2.1-1jpp.ep1.6.el4?arch=src" } } }, { "category": "product_version", "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "product": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "product_id": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hsqldb@1.8.0.8-2.patch01.1jpp.ep1.1?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "jacorb-0:2.3.0-1jpp.ep1.4.src", "product": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.src", "product_id": "jacorb-0:2.3.0-1jpp.ep1.4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb@2.3.0-1jpp.ep1.4?arch=src" } } }, { "category": "product_version", "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "product": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "product_id": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-aop@1.5.5-1.CP01.0jpp.ep1.1.el4?arch=src" } } }, { "category": "product_version", "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "product": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "product_id": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache@1.4.1-4.SP8_CP01.1jpp.ep1.1.el4?arch=src" } } }, { "category": "product_version", "name": "jboss-common-0:1.2.1-0jpp.ep1.2.src", "product": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.src", "product_id": "jboss-common-0:1.2.1-0jpp.ep1.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common@1.2.1-0jpp.ep1.2?arch=src" } } }, { "category": "product_version", "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "product": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "product_id": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-remoting@2.2.2-3.SP4.0jpp.ep1.1?arch=src" } } }, { "category": "product_version", "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.src", "product": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.src", "product_id": "jboss-seam-0:1.2.1-1.ep1.3.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.3.el4?arch=src" } } }, { "category": "product_version", "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "product": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "product_id": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas@4.2.0-3.GA_CP02.ep1.3.el4?arch=src" } } }, { "category": "product_version", "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "product": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "product_id": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb@2.0.0-3.CP05.0jpp.ep1.1?arch=src" } } }, { "category": "product_version", "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "product": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "product_id": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-jboss42@1.2.1-0jpp.ep1.2.el4?arch=src" } } }, { "category": "product_version", "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "product": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "product_id": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-wsconsume-impl@2.0.0-0jpp.ep1.3?arch=src" } } }, { "category": "product_version", "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "product": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "product_id": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossxb@1.0.0-2.SP1.0jpp.ep1.2.el4?arch=src" } } }, { "category": "product_version", "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "product": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "product_id": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jcommon@1.0.12-1jpp.ep1.2.el4?arch=src" } } }, { "category": "product_version", "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "product": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "product_id": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jfreechart@1.0.9-1jpp.ep1.2.el4?arch=src" } } }, { "category": "product_version", "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "product": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "product_id": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jgroups@2.4.1-1.SP4.0jpp.ep1.2?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "product": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "product_id": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs@4.2.0-3.GA_CP02.ep1.1.el4?arch=src" } } }, { "category": "product_version", "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.src", "product": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.src", "product_id": "wsdl4j-0:1.6.2-1jpp.ep1.8.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/wsdl4j@1.6.2-1jpp.ep1.8?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "product": { "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "product_id": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/concurrent@1.3.4-8jpp.ep1.6.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "product": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "product_id": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jsf@1.2_04-1.p02.0jpp.ep1.18.el5?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "product": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "product_id": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jstl@1.2.0-0jpp.ep1.2.el5?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product": { "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product_id": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3@3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product": { "name": "hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product_id": "hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-javadoc@3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product_id": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations@3.2.1-1.patch02.1jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product": { "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product_id": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations-javadoc@3.2.1-1.patch02.1jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "product": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "product_id": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager@3.2.1-1jpp.ep1.6.el5?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "product": { "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "product_id": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager-javadoc@3.2.1-1jpp.ep1.6.el5?arch=noarch" } } }, { "category": "product_version", "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "product": { "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "product_id": "jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb@2.3.0-1jpp.ep1.5.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "product": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "product_id": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-aop@1.5.5-1.CP01.0jpp.ep1.1.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "product": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "product_id": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache@1.4.1-4.SP8_CP01.1jpp.ep1.1.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product_id": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common@1.2.1-0jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "product": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "product_id": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-remoting@2.2.2-3.SP4.0jpp.ep1.1.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "product": { "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "product_id": "jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam-docs@1.2.1-1.ep1.3.el5?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "product": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "product_id": "jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.3.el5?arch=noarch" } } }, { "category": "product_version", "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "product": { "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "product_id": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas@4.2.0-4.GA_CP02.ep1.3.el5.3?arch=noarch" } } }, { "category": "product_version", "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "product": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "product_id": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb@2.0.0-3.CP05.0jpp.ep1.1.el5?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product_id": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-jboss42@1.2.1-0jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "product": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "product_id": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-wsconsume-impl@2.0.0-0jpp.ep1.3.el5?arch=noarch" } } }, { "category": "product_version", "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "product": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "product_id": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossxb@1.0.0-2.SP1.0jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "product": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "product_id": "jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jcommon@1.0.12-1jpp.ep1.2.el5?arch=noarch" } } }, { "category": "product_version", "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "product": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "product_id": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jfreechart@1.0.9-1jpp.ep1.2.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "product": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "product_id": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jgroups@2.4.1-1.SP4.0jpp.ep1.2.el5?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "product": { "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "product_id": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/juddi@0.9-0.rc4.2jpp.ep1.3.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product_id": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs@4.2.0-3.GA_CP02.ep1.1.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product": { "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product_id": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs-examples@4.2.0-3.GA_CP02.ep1.1.el5.1?arch=noarch" } } }, { "category": "product_version", "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "product": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "product_id": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/concurrent@1.3.4-7jpp.ep1.6.el4?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "product": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "product_id": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jaf@1.1.0-0jpp.ep1.10.el4?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "product": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "product_id": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-javamail@1.4.0-0jpp.ep1.8?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "product": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "product_id": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jsf@1.2_04-1.p02.0jpp.ep1.18?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "product": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "product_id": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jstl@1.2.0-0jpp.ep1.2?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product_id": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3@3.2.4-1.SP1_CP02.0jpp.ep1.1.el4?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product": { "name": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product_id": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-javadoc@3.2.4-1.SP1_CP02.0jpp.ep1.1.el4?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product_id": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations@3.2.1-1.patch02.1jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product": { "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product_id": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations-javadoc@3.2.1-1.patch02.1jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "product": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "product_id": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager@3.2.1-1jpp.ep1.6.el4?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "product": { "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "product_id": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager-javadoc@3.2.1-1jpp.ep1.6.el4?arch=noarch" } } }, { "category": "product_version", "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "product": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "product_id": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hsqldb@1.8.0.8-2.patch01.1jpp.ep1.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "jacorb-0:2.3.0-1jpp.ep1.4.noarch", "product": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.noarch", "product_id": "jacorb-0:2.3.0-1jpp.ep1.4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb@2.3.0-1jpp.ep1.4?arch=noarch" } } }, { "category": "product_version", "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "product": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "product_id": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-aop@1.5.5-1.CP01.0jpp.ep1.1.el4?arch=noarch" } } }, { "category": "product_version", "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "product": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "product_id": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache@1.4.1-4.SP8_CP01.1jpp.ep1.1.el4?arch=noarch" } } }, { "category": "product_version", "name": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "product": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "product_id": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common@1.2.1-0jpp.ep1.2?arch=noarch" } } }, { "category": "product_version", "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "product": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "product_id": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-remoting@2.2.2-3.SP4.0jpp.ep1.1?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "product": { "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "product_id": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam-docs@1.2.1-1.ep1.3.el4?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "product": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "product_id": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.3.el4?arch=noarch" } } }, { "category": "product_version", "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "product": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "product_id": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas@4.2.0-3.GA_CP02.ep1.3.el4?arch=noarch" } } }, { "category": "product_version", "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "product": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "product_id": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb@2.0.0-3.CP05.0jpp.ep1.1?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "product": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "product_id": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-jboss42@1.2.1-0jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "product": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "product_id": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-wsconsume-impl@2.0.0-0jpp.ep1.3?arch=noarch" } } }, { "category": "product_version", "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "product": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "product_id": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossxb@1.0.0-2.SP1.0jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "product": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "product_id": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jcommon@1.0.12-1jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "product": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "product_id": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jfreechart@1.0.9-1jpp.ep1.2.el4?arch=noarch" } } }, { "category": "product_version", "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "product": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "product_id": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jgroups@2.4.1-1.SP4.0jpp.ep1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product": { "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product_id": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs-examples@4.2.0-3.GA_CP02.ep1.1.el4?arch=noarch" } } }, { "category": "product_version", "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product_id": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-eap-docs@4.2.0-3.GA_CP02.ep1.1.el4?arch=noarch" } } }, { "category": "product_version", "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "product": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "product_id": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/wsdl4j@1.6.2-1jpp.ep1.8?arch=noarch" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch" }, "product_reference": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src" }, "product_reference": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch" }, "product_reference": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src" }, "product_reference": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch" }, "product_reference": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src" }, "product_reference": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch" }, "product_reference": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src" }, "product_reference": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch" }, "product_reference": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch" }, "product_reference": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch" }, "product_reference": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch" }, "product_reference": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src" }, "product_reference": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch" }, "product_reference": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch" }, "product_reference": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src" }, "product_reference": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" }, "product_reference": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch" }, "product_reference": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.src as a component of Red Hat Application Stack v1 for Enterprise Linux AS (v.4)", "product_id": "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" }, "product_reference": "wsdl4j-0:1.6.2-1jpp.ep1.8.src", "relates_to_product_reference": "4AS-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch" }, "product_reference": "concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src" }, "product_reference": "concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch" }, "product_reference": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src" }, "product_reference": "glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch" }, "product_reference": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src" }, "product_reference": "glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch" }, "product_reference": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src" }, "product_reference": "hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch" }, "product_reference": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch" }, "product_reference": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch" }, "product_reference": "hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch" }, "product_reference": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src" }, "product_reference": "hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch" }, "product_reference": "jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch" }, "product_reference": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src" }, "product_reference": "jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch" }, "product_reference": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch" }, "product_reference": "wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "wsdl4j-0:1.6.2-1jpp.ep1.8.src as a component of Red Hat Application Stack v1 for Enterprise Linux ES (v.4)", "product_id": "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" }, "product_reference": "wsdl4j-0:1.6.2-1jpp.ep1.8.src", "relates_to_product_reference": "4ES-RHWAS" }, { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch" }, "product_reference": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src" }, "product_reference": "concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src" }, "product_reference": "glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src" }, "product_reference": "glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch" }, "product_reference": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src" }, "product_reference": "hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src" }, "product_reference": "hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch" }, "product_reference": "hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src" }, "product_reference": "hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch" }, "product_reference": "hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch" }, "product_reference": "hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-0:2.3.0-1jpp.ep1.5.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src" }, "product_reference": "jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src" }, "product_reference": "jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src" }, "product_reference": "jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src" }, "product_reference": "jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src" }, "product_reference": "jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-0:1.2.1-1.ep1.3.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src" }, "product_reference": "jboss-seam-0:1.2.1-1.ep1.3.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch" }, "product_reference": "jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch" }, "product_reference": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src" }, "product_reference": "jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src" }, "product_reference": "jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src" }, "product_reference": "jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src" }, "product_reference": "jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src" }, "product_reference": "jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jcommon-0:1.0.12-1jpp.ep1.2.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src" }, "product_reference": "jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src" }, "product_reference": "jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src" }, "product_reference": "jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch" }, "product_reference": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src" }, "product_reference": "juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src" }, "product_reference": "rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "relates_to_product_reference": "5Server-Stacks" }, { "category": "default_component_of", "full_product_name": { "name": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch as a component of Red Hat Application Stack v2 for Enterprise Linux (v.5)", "product_id": "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" }, "product_reference": "rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "relates_to_product_reference": "5Server-Stacks" } ] }, "vulnerabilities": [ { "cve": "CVE-2007-4575", "discovery_date": "2007-09-17T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "299801" } ], "notes": [ { "category": "description", "text": "HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to \"exposing static java methods.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenOffice.org-base allows Denial-of-Service and command injection", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ], "known_not_affected": [ "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-4575" }, { "category": "external", "summary": "RHBZ#299801", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=299801" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-4575", "url": "https://www.cve.org/CVERecord?id=CVE-2007-4575" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-4575", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4575" } ], "release_date": "2007-12-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-03-24T22:16:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0158" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenOffice.org-base allows Denial-of-Service and command injection" }, { "cve": "CVE-2007-5461", "discovery_date": "2007-10-14T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "333791" } ], "notes": [ { "category": "description", "text": "Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.", "title": "Vulnerability description" }, { "category": "summary", "text": "Absolute path traversal Apache Tomcat WEBDAV", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ], "known_not_affected": [ "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-5461" }, { "category": "external", "summary": "RHBZ#333791", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=333791" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-5461", "url": "https://www.cve.org/CVERecord?id=CVE-2007-5461" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5461", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5461" } ], "release_date": "2007-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-03-24T22:16:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0158" } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "Absolute path traversal Apache Tomcat WEBDAV" }, { "cve": "CVE-2007-6306", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2007-12-11T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "421081" } ], "notes": [ { "category": "description", "text": "Multiple cross-site scripting (XSS) vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) chart name or (2) chart tool tip text; or the (3) href, (4) shape, or (5) coords attribute of a chart area.", "title": "Vulnerability description" }, { "category": "summary", "text": "JFreeChart: XSS vulnerabilities in the image map feature", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ], "known_not_affected": [ "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-6306" }, { "category": "external", "summary": "RHBZ#421081", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=421081" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-6306", "url": "https://www.cve.org/CVERecord?id=CVE-2007-6306" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-6306", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-6306" } ], "release_date": "2007-12-06T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-03-24T22:16:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0158" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JFreeChart: XSS vulnerabilities in the image map feature" }, { "cve": "CVE-2007-6433", "discovery_date": "2007-12-19T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "426206" } ], "notes": [ { "category": "description", "text": "The getRenderedEjbql method in the org.jboss.seam.framework.Query class in JBoss Seam 2.x before 2.0.0.CR3 allows remote attackers to inject and execute arbitrary EJBQL commands via the order parameter.", "title": "Vulnerability description" }, { "category": "summary", "text": "EJBQL injection via \u0027order\u0027 parameter", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ], "known_not_affected": [ "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-6433" }, { "category": "external", "summary": "RHBZ#426206", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=426206" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-6433", "url": "https://www.cve.org/CVERecord?id=CVE-2007-6433" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-6433", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-6433" } ], "release_date": "2007-12-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-03-24T22:16:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0158" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "EJBQL injection via \u0027order\u0027 parameter" }, { "cve": "CVE-2008-0002", "discovery_date": "2008-02-08T00:00:00+00:00", "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ] } ], "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "432327" } ], "notes": [ { "category": "description", "text": "Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.", "title": "Vulnerability description" }, { "category": "summary", "text": "Tomcat information disclosure vulnerability", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ], "known_not_affected": [ "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el4.src", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.noarch", "5Server-Stacks:concurrent-0:1.3.4-8jpp.ep1.6.el5.1.src", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.noarch", "5Server-Stacks:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.el5.src", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.noarch", "5Server-Stacks:glassfish-jstl-0:1.2.0-0jpp.ep1.2.el5.src", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:hibernate3-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.src", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.src", "5Server-Stacks:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el5.src", "5Server-Stacks:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el5.noarch", "5Server-Stacks:hibernate3-javadoc-0:3.2.4-1.SP1_CP02.0jpp.ep1.1.el5.1.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.noarch", "5Server-Stacks:jacorb-0:2.3.0-1jpp.ep1.5.el5.src", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el5.src", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jboss-common-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.el5.src", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jboss-seam-0:1.2.1-1.ep1.3.el5.src", "5Server-Stacks:jboss-seam-docs-0:1.2.1-1.ep1.3.el5.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.noarch", "5Server-Stacks:jbossas-0:4.2.0-4.GA_CP02.ep1.3.el5.3.src", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.noarch", "5Server-Stacks:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.el5.src", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossws-jboss42-0:1.2.1-0jpp.ep1.2.el5.1.src", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.noarch", "5Server-Stacks:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.el5.src", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el5.1.src", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.noarch", "5Server-Stacks:jcommon-0:1.0.12-1jpp.ep1.2.el5.src", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.noarch", "5Server-Stacks:jfreechart-0:1.0.9-1jpp.ep1.2.el5.1.src", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.noarch", "5Server-Stacks:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.el5.src", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.noarch", "5Server-Stacks:juddi-0:0.9-0.rc4.2jpp.ep1.3.el5.1.src", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch", "5Server-Stacks:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el5.1.src", "5Server-Stacks:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el5.1.noarch" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2008-0002" }, { "category": "external", "summary": "RHBZ#432327", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=432327" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2008-0002", "url": "https://www.cve.org/CVERecord?id=CVE-2008-0002" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-0002", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-0002" } ], "release_date": "2008-02-08T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2008-03-24T22:16:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188", "product_ids": [ "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4AS-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4AS-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4AS-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4AS-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4AS-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4AS-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4AS-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4AS-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4AS-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4AS-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4AS-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4AS-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4AS-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4AS-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4AS-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4AS-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4AS-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4AS-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4AS-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4AS-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4AS-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4AS-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.noarch", "4ES-RHWAS:concurrent-0:1.3.4-7jpp.ep1.6.el4.src", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.noarch", "4ES-RHWAS:glassfish-jaf-0:1.1.0-0jpp.ep1.10.el4.src", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.noarch", "4ES-RHWAS:glassfish-javamail-0:1.4.0-0jpp.ep1.8.src", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.noarch", "4ES-RHWAS:glassfish-jsf-0:1.2_04-1.p02.0jpp.ep1.18.src", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.noarch", "4ES-RHWAS:glassfish-jstl-0:1.2.0-0jpp.ep1.2.src", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hibernate3-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.src", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-annotations-0:3.2.1-1.patch02.1jpp.ep1.2.el4.src", "4ES-RHWAS:hibernate3-annotations-javadoc-0:3.2.1-1.patch02.1jpp.ep1.2.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-entitymanager-0:3.2.1-1jpp.ep1.6.el4.src", "4ES-RHWAS:hibernate3-entitymanager-javadoc-0:3.2.1-1jpp.ep1.6.el4.noarch", "4ES-RHWAS:hibernate3-javadoc-1:3.2.4-1.SP1_CP02.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.noarch", "4ES-RHWAS:hsqldb-1:1.8.0.8-2.patch01.1jpp.ep1.1.src", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.noarch", "4ES-RHWAS:jacorb-0:2.3.0-1jpp.ep1.4.src", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-aop-0:1.5.5-1.CP01.0jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.noarch", "4ES-RHWAS:jboss-cache-0:1.4.1-4.SP8_CP01.1jpp.ep1.1.el4.src", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.noarch", "4ES-RHWAS:jboss-common-0:1.2.1-0jpp.ep1.2.src", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.noarch", "4ES-RHWAS:jboss-remoting-0:2.2.2-3.SP4.0jpp.ep1.1.src", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jboss-seam-0:1.2.1-1.ep1.3.el4.src", "4ES-RHWAS:jboss-seam-docs-0:1.2.1-1.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.noarch", "4ES-RHWAS:jbossas-0:4.2.0-3.GA_CP02.ep1.3.el4.src", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.noarch", "4ES-RHWAS:jbossweb-0:2.0.0-3.CP05.0jpp.ep1.1.src", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.noarch", "4ES-RHWAS:jbossws-wsconsume-impl-0:2.0.0-0jpp.ep1.3.src", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.noarch", "4ES-RHWAS:jbossxb-0:1.0.0-2.SP1.0jpp.ep1.2.el4.src", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jcommon-0:1.0.12-1jpp.ep1.2.el4.src", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.noarch", "4ES-RHWAS:jfreechart-0:1.0.9-1jpp.ep1.2.el4.src", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.noarch", "4ES-RHWAS:jgroups-1:2.4.1-1.SP4.0jpp.ep1.2.src", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:rh-eap-docs-0:4.2.0-3.GA_CP02.ep1.1.el4.src", "4ES-RHWAS:rh-eap-docs-examples-0:4.2.0-3.GA_CP02.ep1.1.el4.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.noarch", "4ES-RHWAS:wsdl4j-0:1.6.2-1jpp.ep1.8.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2008:0158" } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "Tomcat information disclosure vulnerability" } ] }
gsd-2008-0002
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2008-0002", "description": "Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.", "id": "GSD-2008-0002", "references": [ "https://www.suse.com/security/cve/CVE-2008-0002.html", "https://access.redhat.com/errata/RHSA-2008:0213", "https://access.redhat.com/errata/RHSA-2008:0158", "https://access.redhat.com/errata/RHSA-2008:0151" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2008-0002" ], "details": "Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.", "id": "GSD-2008-0002", "modified": "2023-12-13T01:22:58.504547Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2008-0002", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "3638", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/3638" }, { "name": "27703", "refsource": "BID", "url": "http://www.securityfocus.com/bid/27703" }, { "name": "28915", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28915" }, { "name": "37460", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/37460" }, { "name": "20080208 CVE-2008-0002: Tomcat information disclosure vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/487812/100/0/threaded" }, { "name": "31681", "refsource": "BID", "url": "http://www.securityfocus.com/bid/31681" }, { "name": "28834", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28834" }, { "name": "http://www.vmware.com/security/advisories/VMSA-2009-0016.html", "refsource": "CONFIRM", "url": "http://www.vmware.com/security/advisories/VMSA-2009-0016.html" }, { "name": "ADV-2008-0488", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/0488" }, { "name": "20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/507985/100/0/threaded" }, { "name": "SUSE-SR:2009:004", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html" }, { "name": "http://tomcat.apache.org/security-6.html", "refsource": "CONFIRM", "url": "http://tomcat.apache.org/security-6.html" }, { "name": "57126", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/57126" }, { "name": "32222", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/32222" }, { "name": "FEDORA-2008-1467", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html" }, { "name": "GLSA-200804-10", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200804-10.xml" }, { "name": "FEDORA-2008-1603", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html" }, { "name": "ADV-2008-2780", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/2780" }, { "name": "HPSBST02955", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=139344343412337\u0026w=2" }, { "name": "APPLE-SA-2008-10-09", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html" }, { "name": "http://support.apple.com/kb/HT3216", "refsource": "CONFIRM", "url": "http://support.apple.com/kb/HT3216" }, { "name": "29711", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/29711" }, { "name": "ADV-2009-3316", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2009/3316" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2008-0002" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-Other" } ] } ] }, "references": { "reference_data": [ { "name": "http://tomcat.apache.org/security-6.html", "refsource": "CONFIRM", "tags": [], "url": "http://tomcat.apache.org/security-6.html" }, { "name": "27703", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/27703" }, { "name": "28834", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/28834" }, { "name": "FEDORA-2008-1467", "refsource": "FEDORA", "tags": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html" }, { "name": "FEDORA-2008-1603", "refsource": "FEDORA", "tags": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html" }, { "name": "28915", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/28915" }, { "name": "GLSA-200804-10", "refsource": "GENTOO", "tags": [], "url": "http://security.gentoo.org/glsa/glsa-200804-10.xml" }, { "name": "29711", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/29711" }, { "name": "3638", "refsource": "SREASON", "tags": [], "url": "http://securityreason.com/securityalert/3638" }, { "name": "31681", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/31681" }, { "name": "APPLE-SA-2008-10-09", "refsource": "APPLE", "tags": [], "url": "http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html" }, { "name": "32222", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/32222" }, { "name": "http://support.apple.com/kb/HT3216", "refsource": "CONFIRM", "tags": [], "url": "http://support.apple.com/kb/HT3216" }, { "name": "SUSE-SR:2009:004", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html" }, { "name": "http://www.vmware.com/security/advisories/VMSA-2009-0016.html", "refsource": "CONFIRM", "tags": [], "url": "http://www.vmware.com/security/advisories/VMSA-2009-0016.html" }, { "name": "ADV-2009-3316", "refsource": "VUPEN", "tags": [], "url": "http://www.vupen.com/english/advisories/2009/3316" }, { "name": "37460", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/37460" }, { "name": "ADV-2008-0488", "refsource": "VUPEN", "tags": [], "url": "http://www.vupen.com/english/advisories/2008/0488" }, { "name": "ADV-2008-2780", "refsource": "VUPEN", "tags": [], "url": "http://www.vupen.com/english/advisories/2008/2780" }, { "name": "HPSBST02955", "refsource": "HP", "tags": [], "url": "http://marc.info/?l=bugtraq\u0026m=139344343412337\u0026w=2" }, { "name": "57126", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/57126" }, { "name": "20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/507985/100/0/threaded" }, { "name": "20080208 CVE-2008-0002: Tomcat information disclosure vulnerability", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/487812/100/0/threaded" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false } }, "lastModifiedDate": "2018-10-15T21:56Z", "publishedDate": "2008-02-12T01:00Z" } } }
ghsa-5x5f-9r6q-q7mh
Vulnerability from github
Published
2022-05-01 23:27
Modified
2024-02-09 15:25
Summary
Apache Tomcat Sensitive Information Disclosure
Details
Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.
{ "affected": [ { "package": { "ecosystem": "Maven", "name": "org.apache.tomcat:tomcat" }, "ranges": [ { "events": [ { "introduced": "6.0.0" }, { "fixed": "6.0.16" } ], "type": "ECOSYSTEM" } ] } ], "aliases": [ "CVE-2008-0002" ], "database_specific": { "cwe_ids": [ "CWE-200" ], "github_reviewed": true, "github_reviewed_at": "2024-02-09T15:25:51Z", "nvd_published_at": "2008-02-12T01:00:00Z", "severity": "MODERATE" }, "details": "Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.", "id": "GHSA-5x5f-9r6q-q7mh", "modified": "2024-02-09T15:25:52Z", "published": "2022-05-01T23:27:14Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-0002" }, { "type": "PACKAGE", "url": "https://github.com/apache/tomcat" }, { "type": "WEB", "url": "https://web.archive.org/web/20080214133036/http://secunia.com/advisories/28915" }, { "type": "WEB", "url": "https://web.archive.org/web/20080715062302/http://secunia.com/advisories/29711" }, { "type": "WEB", "url": "https://web.archive.org/web/20080724052339/http://secunia.com/advisories/28834" }, { "type": "WEB", "url": "https://web.archive.org/web/20081012021650/http://www.securityfocus.com/bid/27703" }, { "type": "WEB", "url": "https://web.archive.org/web/20081013050642/http://secunia.com/advisories/32222" }, { "type": "WEB", "url": "https://web.archive.org/web/20081120062646/http://securityreason.com/securityalert/3638" }, { "type": "WEB", "url": "https://web.archive.org/web/20081121133027/http://www.securityfocus.com/archive/1/487812/100/0/threaded" }, { "type": "WEB", "url": "https://web.archive.org/web/20091125140215/http://secunia.com/advisories/37460" }, { "type": "WEB", "url": "https://web.archive.org/web/20120825080137/http://www.securityfocus.com/bid/31681" }, { "type": "WEB", "url": "https://web.archive.org/web/20140723000733/http://secunia.com/advisories/57126" }, { "type": "WEB", "url": "https://web.archive.org/web/20150621204350/http://www.securityfocus.com/archive/1/507985/100/0/threaded" }, { "type": "WEB", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html" }, { "type": "WEB", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html" }, { "type": "WEB", "url": "http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html" }, { "type": "WEB", "url": "http://marc.info/?l=bugtraq\u0026m=139344343412337\u0026w=2" }, { "type": "WEB", "url": "http://security.gentoo.org/glsa/glsa-200804-10.xml" }, { "type": "WEB", "url": "http://support.apple.com/kb/HT3216" }, { "type": "WEB", "url": "http://tomcat.apache.org/security-6.html" }, { "type": "WEB", "url": "http://www.vmware.com/security/advisories/VMSA-2009-0016.html" } ], "schema_version": "1.4.0", "severity": [], "summary": "Apache Tomcat Sensitive Information Disclosure" }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.