rhsa-2013_0195
Vulnerability from csaf_redhat
Published
2013-01-24 18:41
Modified
2024-11-22 06:10
Summary
Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 update
Notes
Topic
Updated JBoss Enterprise Web Platform 5.2.0 packages that fix multiple
security issues, various bugs, and add several enhancements are now
available for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
This JBoss Enterprise Web Platform 5.2.0 release serves as a replacement
for JBoss Enterprise Web Platform 5.1.2, and includes bug fixes and
enhancements. As JBoss Enterprise Web Platform is a subset of JBoss
Enterprise Application Platform, refer to the JBoss Enterprise Application
Platform 5.2.0 Release Notes for information on the most significant of
these changes. The Release Notes will be available shortly from
https://access.redhat.com/knowledge/docs/
Details
An attack technique against the W3C XML Encryption Standard when block
ciphers were used in CBC mode could allow a remote attacker to conduct
chosen-ciphertext attacks, leading to the recovery of the entire plain text
of a particular cryptogram. (CVE-2011-1096)
JBoss Web Services leaked side-channel data when distributing symmetric
keys (for XML encryption), allowing a remote attacker to recover the entire
plain text form of a symmetric key. (CVE-2011-2487)
Spring framework could possibly evaluate Expression Language (EL)
expressions twice, allowing a remote attacker to execute arbitrary code in
the context of the application server, or to obtain sensitive information
from the server. Manual action is required to apply this fix. Refer to the
Solution section. (CVE-2011-2730)
Apache CXF checked to ensure XML elements were signed or encrypted by a
Supporting Token, but not whether the correct token was used. A remote
attacker could transmit confidential information without the appropriate
security, and potentially circumvent access controls on web services
exposed via Apache CXF. Refer to the Solution section for details.
(CVE-2012-2379)
When an application used FORM authentication, along with another component
that calls request.setUserPrincipal() before the call to
FormAuthenticator#authenticate() (such as the Single-Sign-On valve), it was
possible to bypass the security constraint checks in the FORM authenticator
by appending "/j_security_check" to the end of a URL. (CVE-2012-3546)
The JMX Console was vulnerable to CSRF attacks, allowing a remote attacker
to hijack the authenticated JMX Console session of an administrator.
(CVE-2011-2908)
An XSS flaw allowed a remote attacker to perform an XSS attack against
victims using the JMX Console. (CVE-2011-4575)
SecurityAssociation.getCredential() returned the previous credential if
no security context was provided. Depending on the deployed applications,
this could possibly allow a remote attacker to hijack the credentials of a
previously-authenticated user. (CVE-2012-3370)
Configuring the JMX Invoker to restrict access to users with specific
roles did not actually restrict access, allowing remote attackers with
valid JMX Invoker credentials to perform JMX operations accessible to
roles they are not a member of. (CVE-2012-5478)
twiddle.sh accepted credentials as command line arguments, allowing local
users to view them via a process listing. (CVE-2009-5066)
NonManagedConnectionFactory logged the username and password in plain text
when an exception was thrown. This could lead to the exposure of
authentication credentials if local users had permissions to read the log
file. (CVE-2012-0034)
The JMXInvokerHAServlet and EJBInvokerHAServlet invoker servlets allow
unauthenticated access by default in some profiles. The security
interceptor's second layer of authentication prevented direct exploitation
of this flaw. If the interceptor was misconfigured or inadvertently
disabled, this flaw could lead to arbitrary code execution in the context
of the user running the JBoss server. (CVE-2012-0874)
The JGroups diagnostics service was enabled with no authentication when a
JGroups channel was started, allowing attackers on the adjacent network to
read diagnostic information. (CVE-2012-2377)
CallerIdentityLoginModule retained the password from the previous call if a
null password was provided. In non-default configurations this could
possibly lead to a remote attacker hijacking a previously-authenticated
user's session. (CVE-2012-3369)
Red Hat would like to thank Juraj Somorovsky of Ruhr-University Bochum for
reporting CVE-2011-1096 and CVE-2011-2487; the Apache CXF project for
reporting CVE-2012-2379; and Tyler Krpata for reporting CVE-2011-4575.
CVE-2012-3370 and CVE-2012-3369 were discovered by Carlo de Wolf of Red
Hat; CVE-2012-5478 discovered by Derek Horton of Red Hat; CVE-2012-0874
discovered by David Jorm of Red Hat; and CVE-2012-2377 was discovered by
Red Hat.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated JBoss Enterprise Web Platform 5.2.0 packages that fix multiple\nsecurity issues, various bugs, and add several enhancements are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nThis JBoss Enterprise Web Platform 5.2.0 release serves as a replacement\nfor JBoss Enterprise Web Platform 5.1.2, and includes bug fixes and\nenhancements. As JBoss Enterprise Web Platform is a subset of JBoss\nEnterprise Application Platform, refer to the JBoss Enterprise Application\nPlatform 5.2.0 Release Notes for information on the most significant of\nthese changes. The Release Notes will be available shortly from\nhttps://access.redhat.com/knowledge/docs/", "title": "Topic" }, { "category": "general", "text": "An attack technique against the W3C XML Encryption Standard when block\nciphers were used in CBC mode could allow a remote attacker to conduct\nchosen-ciphertext attacks, leading to the recovery of the entire plain text\nof a particular cryptogram. (CVE-2011-1096)\n\nJBoss Web Services leaked side-channel data when distributing symmetric\nkeys (for XML encryption), allowing a remote attacker to recover the entire\nplain text form of a symmetric key. (CVE-2011-2487)\n\nSpring framework could possibly evaluate Expression Language (EL)\nexpressions twice, allowing a remote attacker to execute arbitrary code in\nthe context of the application server, or to obtain sensitive information\nfrom the server. Manual action is required to apply this fix. Refer to the\nSolution section. (CVE-2011-2730)\n\nApache CXF checked to ensure XML elements were signed or encrypted by a\nSupporting Token, but not whether the correct token was used. A remote\nattacker could transmit confidential information without the appropriate\nsecurity, and potentially circumvent access controls on web services\nexposed via Apache CXF. Refer to the Solution section for details.\n(CVE-2012-2379)\n\nWhen an application used FORM authentication, along with another component\nthat calls request.setUserPrincipal() before the call to\nFormAuthenticator#authenticate() (such as the Single-Sign-On valve), it was\npossible to bypass the security constraint checks in the FORM authenticator\nby appending \"/j_security_check\" to the end of a URL. (CVE-2012-3546)\n\nThe JMX Console was vulnerable to CSRF attacks, allowing a remote attacker\nto hijack the authenticated JMX Console session of an administrator.\n(CVE-2011-2908)\n\nAn XSS flaw allowed a remote attacker to perform an XSS attack against\nvictims using the JMX Console. (CVE-2011-4575)\n\nSecurityAssociation.getCredential() returned the previous credential if\nno security context was provided. Depending on the deployed applications,\nthis could possibly allow a remote attacker to hijack the credentials of a\npreviously-authenticated user. (CVE-2012-3370)\n\nConfiguring the JMX Invoker to restrict access to users with specific\nroles did not actually restrict access, allowing remote attackers with\nvalid JMX Invoker credentials to perform JMX operations accessible to\nroles they are not a member of. (CVE-2012-5478)\n\ntwiddle.sh accepted credentials as command line arguments, allowing local\nusers to view them via a process listing. (CVE-2009-5066)\n\nNonManagedConnectionFactory logged the username and password in plain text\nwhen an exception was thrown. This could lead to the exposure of\nauthentication credentials if local users had permissions to read the log\nfile. (CVE-2012-0034)\n\nThe JMXInvokerHAServlet and EJBInvokerHAServlet invoker servlets allow\nunauthenticated access by default in some profiles. The security\ninterceptor\u0027s second layer of authentication prevented direct exploitation\nof this flaw. If the interceptor was misconfigured or inadvertently\ndisabled, this flaw could lead to arbitrary code execution in the context\nof the user running the JBoss server. (CVE-2012-0874)\n\nThe JGroups diagnostics service was enabled with no authentication when a\nJGroups channel was started, allowing attackers on the adjacent network to\nread diagnostic information. (CVE-2012-2377)\n\nCallerIdentityLoginModule retained the password from the previous call if a\nnull password was provided. In non-default configurations this could\npossibly lead to a remote attacker hijacking a previously-authenticated\nuser\u0027s session. (CVE-2012-3369)\n\nRed Hat would like to thank Juraj Somorovsky of Ruhr-University Bochum for\nreporting CVE-2011-1096 and CVE-2011-2487; the Apache CXF project for\nreporting CVE-2012-2379; and Tyler Krpata for reporting CVE-2011-4575.\nCVE-2012-3370 and CVE-2012-3369 were discovered by Carlo de Wolf of Red\nHat; CVE-2012-5478 discovered by Derek Horton of Red Hat; CVE-2012-0874\ndiscovered by David Jorm of Red Hat; and CVE-2012-2377 was discovered by\nRed Hat.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0195", "url": "https://access.redhat.com/errata/RHSA-2013:0195" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "https://access.redhat.com/knowledge/docs/", "url": "https://access.redhat.com/knowledge/docs/" }, { "category": "external", "summary": "681916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=681916" }, { "category": "external", "summary": "713539", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=713539" }, { "category": "external", "summary": "730176", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730176" }, { "category": "external", "summary": "737608", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=737608" }, { "category": "external", "summary": "760387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=760387" }, { "category": "external", "summary": "772835", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=772835" }, { "category": "external", "summary": "795645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=795645" }, { "category": "external", "summary": "823392", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=823392" }, { "category": "external", "summary": "826534", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=826534" }, { "category": "external", "summary": "836451", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=836451" }, { "category": "external", "summary": "836456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=836456" }, { "category": "external", "summary": "842477", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=842477" }, { "category": "external", "summary": "848535", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=848535" }, { "category": "external", "summary": "874349", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=874349" }, { "category": "external", "summary": "883634", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=883634" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0195.json" } ], "title": "Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 update", "tracking": { "current_release_date": "2024-11-22T06:10:11+00:00", "generator": { "date": "2024-11-22T06:10:11+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2013:0195", "initial_release_date": "2013-01-24T18:41:00+00:00", "revision_history": [ { "date": "2013-01-24T18:41:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-01-24T18:41:24+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T06:10:11+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product": { "name": "Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5", "product_identification_helper": { "cpe": "cpe:/a:redhat:jboss_enterprise_web_platform:5::el6" } } } ], "category": "product_family", "name": "Red Hat JBoss Web Platform" }, { "branches": [ { "category": "product_version", "name": "bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "product": { "name": "bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "product_id": "bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/bsh2-bsf@2.0-0.b4.15.patch01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "product": { "name": "bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "product_id": "bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/bsh2@2.0-0.b4.15.patch01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "product": { "name": "hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "product_id": "hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3@3.3.2-1.9.GA_CP05.ep5.el6?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "product": { "name": "hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "product_id": "hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-javadoc@3.3.2-1.9.GA_CP05.ep5.el6?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "product": { "name": "hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "product_id": "hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations@3.4.0-3.6.GA_CP05.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "product": { "name": "hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "product_id": "hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations-javadoc@3.4.0-3.6.GA_CP05.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "product": { "name": "hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "product_id": "hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager-javadoc@3.4.0-4.5.GA_CP05.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "product": { "name": "hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "product_id": "hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager@3.4.0-4.5.GA_CP05.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "product": { "name": "hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "product_id": "hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-search@3.1.1-2.5.GA_CP05.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "product": { "name": "hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "product_id": "hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-search-javadoc@3.1.1-2.5.GA_CP05.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "product": { "name": "apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "product_id": "apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/apache-cxf@2.2.12-6.1.patch_04.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "product": { "name": "glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "product_id": "glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jaxb@2.1.12-12_patch_03.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "product": { "name": "jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "product_id": "jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-naming@5.0.3-5.CP02.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "product": { "name": "jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "product_id": "jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-reflect@2.0.4-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "product": { "name": "jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "product_id": "jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-remoting@2.5.4-10.SP4.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "product": { "name": "jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "product_id": "jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache-pojo@3.0.1-1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "product": { "name": "jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "product_id": "jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cluster-ha-server-api@1.2.1-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "product": { "name": "jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "product_id": "jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-metrics-deployer@1.1.1-0.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "product": { "name": "jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "product_id": "jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cl@2.0.11-4.GA.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "product": { "name": "jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "product_id": "jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common-core@2.2.21-1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "product": { "name": "jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "product_id": "jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-vfs2@2.2.1-4.GA.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "product": { "name": "jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "product_id": "jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-spi@1.1.2-6.SP8.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "product": { "name": "jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "product_id": "jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jopr-hibernate-plugin@3.0.0-14.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "product": { "name": "jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "product_id": "jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jopr-jboss-cache-v3-plugin@3.0.0-15.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xml-security-0:1.5.1-2.ep5.el6.noarch", "product": { "name": "xml-security-0:1.5.1-2.ep5.el6.noarch", "product_id": "xml-security-0:1.5.1-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-security@1.5.1-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-plugins-parent@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-dbutils@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-comm-api@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-plugin-api@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-parent@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-domain@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-helpers@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-parent@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-filetemplate-bundle-common@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-client-api@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-gui@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-plugin-container@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-plugindoc@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-util@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-rtfilter@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-ant-bundle-common@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-modules-parent@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-core-native-system@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-pluginAnnotations@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-plugin-validator@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-pluginGen@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-common-parent@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-jboss-as-common@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-jmx-plugin@3.0.0-21.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "product": { "name": "rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "product_id": "rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-platform-plugin@3.0.0-14.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product": { "name": "spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_id": "spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/spring2-agent@2.5.6-9.SEC03.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product": { "name": "spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_id": "spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/spring2@2.5.6-9.SEC03.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product": { "name": "spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_id": "spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/spring2-context@2.5.6-9.SEC03.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product": { "name": "spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_id": "spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/spring2-aop@2.5.6-9.SEC03.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product": { "name": "spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_id": "spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/spring2-all@2.5.6-9.SEC03.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product": { "name": "spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_id": "spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/spring2-beans@2.5.6-9.SEC03.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product": { "name": "spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_id": "spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/spring2-core@2.5.6-9.SEC03.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "product": { "name": "jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "product_id": "jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common-beans@1.0.1-2.Final.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "product": { "name": "jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "product_id": "jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-bootstrap@1.0.2-1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "product": { "name": "jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "product_id": "jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-logmanager@1.1.2-6.GA_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "product": { "name": "jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "product_id": "jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-interceptors@1.0.9-0.2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "aopalliance-0:1.0-5.3.ep5.el6.noarch", "product": { "name": "aopalliance-0:1.0-5.3.ep5.el6.noarch", "product_id": "aopalliance-0:1.0-5.3.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/aopalliance@1.0-5.3.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "product": { "name": "jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "product_id": "jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-ext-api@1.0.0-4.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "product": { "name": "jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "product_id": "jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-cache@1.0.0-4.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "product": { "name": "jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "product_id": "jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-metadata@1.0.0-3.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "product": { "name": "jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "product_id": "jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-timeout-spi@0.1.1-0.8.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "product": { "name": "jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "product_id": "jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-timeout@0.1.1-0.8.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "product": { "name": "jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "product_id": "jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-timeout-3.0-api@0.1.1-0.8.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "product": { "name": "jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "product_id": "jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-security@1.0.2-0.5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "product": { "name": "jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "product_id": "jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-transactions@1.0.2-1.6.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "product": { "name": "jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "product_id": "jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jpa-deployers@1.0.0-6.SP2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "product": { "name": "jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "product_id": "jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jopr-jboss-as-5-plugin@3.0.0-16.EmbJopr5.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "product": { "name": "jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "product_id": "jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jms-1.1-api@5.0.2-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "product": { "name": "jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "product_id": "jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jca-1.5-api@5.0.2-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "product": { "name": "jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "product_id": "jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-javaee-poms@5.0.2-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "product": { "name": "jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "product_id": "jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-transaction-1.0.1-api@5.0.2-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "product": { "name": "jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "product_id": "jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb-3.0-api@5.0.2-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "product": { "name": "jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "product_id": "jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jacc-1.1-api@5.0.2-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "product": { "name": "jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "product_id": "jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jad-1.2-api@5.0.2-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "product": { "name": "jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "product_id": "jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jaspi-1.0-api@5.0.2-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "product": { "name": "jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "product_id": "jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-javaee@5.0.2-2.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "product": { "name": "jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "product_id": "jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache-core@3.2.11-1.GA.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "product": { "name": "jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "product_id": "jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-core@1.3.9-0.4.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product": { "name": "mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product_id": "mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_cluster-jbossweb2@1.0.10-12.2.GA_CP04.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product": { "name": "mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product_id": "mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_cluster-tomcat6@1.0.10-12.2.GA_CP04.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product": { "name": "mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product_id": "mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_cluster-demo@1.0.10-12.2.GA_CP04.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product": { "name": "mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product_id": "mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_cluster-jbossas@1.0.10-12.2.GA_CP04.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "product": { "name": "jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "product_id": "jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb-jboss@2.3.2-2.jboss_1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "product": { "name": "picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "product_id": "picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/picketlink-quickstarts@2.1.5-1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "product": { "name": "picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "product_id": "picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/picketlink-quickstarts-idp@2.1.5-1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "product": { "name": "picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "product_id": "picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/picketlink-quickstarts-sts@2.1.5-1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "product": { "name": "picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "product_id": "picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/picketlink-quickstarts-pdp@2.1.5-1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jgroups-1:2.6.22-1.ep5.el6.noarch", "product": { "name": "jgroups-1:2.6.22-1.ep5.el6.noarch", "product_id": "jgroups-1:2.6.22-1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jgroups@2.6.22-1.ep5.el6?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product": { "name": "xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_id": "xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-commons-jaxp-1.1-apis@1.3.04-8.2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product": { "name": "xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_id": "xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-commons-which11@1.3.04-8.2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product": { "name": "xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_id": "xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-commons-which10@1.3.04-8.2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product": { "name": "xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_id": "xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-commons-resolver12@1.3.04-8.2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product": { "name": "xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_id": "xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-commons-jaxp-1.2-apis@1.3.04-8.2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product": { "name": "xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_id": "xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-commons@1.3.04-8.2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product": { "name": "xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_id": "xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-commons-jaxp-1.3-apis@1.3.04-8.2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product": { "name": "xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_id": "xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-commons-resolver11@1.3.04-8.2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product": { "name": "xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_id": "xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-commons-resolver10@1.3.04-8.2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "product": { "name": "xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "product_id": "xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xerces-j2-scripts@2.9.1-10.patch02.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "product": { "name": "xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "product_id": "xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/xerces-j2@2.9.1-10.patch02.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "product": { "name": "jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "product_id": "jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-ext-api-impl@1.0.0-3.7.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "product": { "name": "jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "product_id": "jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jaxrpc-api_1.1_spec@1.0.0-16.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "product": { "name": "jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "product_id": "jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossts@4.6.1-12.CP13.7.ep5.el6?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "product": { "name": "jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "product_id": "jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossts-javadoc@4.6.1-12.CP13.7.ep5.el6?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "product": { "name": "javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "product_id": "javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/javassist@3.12.0-6.SP1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "product": { "name": "jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "product_id": "jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-common@1.1.0-9.SP10.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "product": { "name": "jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "product_id": "jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-framework@3.1.2-9.SP13.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "product": { "name": "jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "product_id": "jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-security-negotiation@2.1.3-1.GA.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "product": { "name": "jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "product_id": "jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-aop2@2.1.6-5.CP06.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "product": { "name": "jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "product_id": "jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam2-runtime@2.2.6.EAP5-14.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "product": { "name": "jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "product_id": "jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam2@2.2.6.EAP5-14.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "product": { "name": "jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "product_id": "jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam2-docs@2.2.6.EAP5-14.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "product": { "name": "jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "product_id": "jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam2-examples@2.2.6.EAP5-14.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "product": { "name": "jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "product_id": "jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jopr-embedded@1.3.4-19.SP6.9.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "product": { "name": "jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "product_id": "jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas-web-tp-licenses@5.2.0-8.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "google-guice-0:2.0-3.ep5.el6.noarch", "product": { "name": "google-guice-0:2.0-3.ep5.el6.noarch", "product_id": "google-guice-0:2.0-3.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/google-guice@2.0-3.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "product": { "name": "jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "product_id": "jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas-web-client@5.2.0-16.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "product": { "name": "jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "product_id": "jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas-web-ws-native@5.2.0-16.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossas-web-0:5.2.0-16.ep5.el6.noarch", "product": { "name": "jbossas-web-0:5.2.0-16.ep5.el6.noarch", "product_id": "jbossas-web-0:5.2.0-16.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas-web@5.2.0-16.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product": { "name": "resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product_id": "resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/resteasy-manual@1.2.1-17.CP02_patch02.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product": { "name": "resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product_id": "resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/resteasy@1.2.1-17.CP02_patch02.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product": { "name": "resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product_id": "resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/resteasy-examples@1.2.1-17.CP02_patch02.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product": { "name": "resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product_id": "resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/resteasy-javadoc@1.2.1-17.CP02_patch02.1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "product": { "name": "rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "product_id": "rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-ewp-docs@5.2.0-11.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "product": { "name": "rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "product_id": "rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-ewp-docs-examples@5.2.0-11.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "product": { "name": "jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "product_id": "jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws@3.1.2-13.SP15_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "product": { "name": "wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "product_id": "wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/wss4j@1.5.12-4_patch_02.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "product": { "name": "jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "product_id": "jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-security-spi@2.0.5-4.SP3_1.ep5.el6?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "product": { "name": "jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "product_id": "jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbosssx2@2.0.5-8.3.SP3_1.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "product": { "name": "picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "product_id": "picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/picketlink-federation@2.1.5-3.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "product": { "name": "jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "product_id": "jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas-ws-cxf-ewp@5.2.0-11.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "product": { "name": "jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "product_id": "jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb-jsp-2.1-api@2.1.13-2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "product": { "name": "jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "product_id": "jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb-el-1.0-api@2.1.13-2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "product": { "name": "jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "product_id": "jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb-lib@2.1.13-2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "product": { "name": "jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "product_id": "jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb@2.1.13-2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "product": { "name": "jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "product_id": "jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb-servlet-2.5-api@2.1.13-2_patch_01.ep5.el6?arch=noarch" } } }, { "category": "product_version", "name": "hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "product": { "name": "hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "product_id": "hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/hsqldb@1.8.0.10-11_patch_01.1.ep5.el6?arch=noarch\u0026epoch=2" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "product": { "name": "bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "product_id": "bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/bsh2@2.0-0.b4.15.patch01.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "product": { "name": "hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "product_id": "hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3@3.3.2-1.9.GA_CP05.ep5.el6?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "product": { "name": "hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "product_id": "hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-annotations@3.4.0-3.6.GA_CP05.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "product": { "name": "hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "product_id": "hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-entitymanager@3.4.0-4.5.GA_CP05.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "product": { "name": "hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "product_id": "hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hibernate3-search@3.1.1-2.5.GA_CP05.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "product": { "name": "apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "product_id": "apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/apache-cxf@2.2.12-6.1.patch_04.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "product": { "name": "glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "product_id": "glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/glassfish-jaxb@2.1.12-12_patch_03.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "product": { "name": "jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "product_id": "jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-naming@5.0.3-5.CP02.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-reflect-0:2.0.4-2.ep5.el6.src", "product": { "name": "jboss-reflect-0:2.0.4-2.ep5.el6.src", "product_id": "jboss-reflect-0:2.0.4-2.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-reflect@2.0.4-2.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "product": { "name": "jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "product_id": "jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-remoting@2.5.4-10.SP4.1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "product": { "name": "jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "product_id": "jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache-pojo@3.0.1-1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "product": { "name": "jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "product_id": "jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cluster-ha-server-api@1.2.1-2.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "product": { "name": "jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "product_id": "jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-metrics-deployer@1.1.1-0.1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "product": { "name": "jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "product_id": "jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cl@2.0.11-4.GA.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-common-core-0:2.2.21-1.ep5.el6.src", "product": { "name": "jboss-common-core-0:2.2.21-1.ep5.el6.src", "product_id": "jboss-common-core-0:2.2.21-1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common-core@2.2.21-1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "product": { "name": "jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "product_id": "jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-vfs2@2.2.1-4.GA.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "product": { "name": "jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "product_id": "jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-spi@1.1.2-6.SP8.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "product": { "name": "jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "product_id": "jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jopr-hibernate-plugin@3.0.0-14.EmbJopr5.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "product": { "name": "jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "product_id": "jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jopr-jboss-cache-v3-plugin@3.0.0-15.EmbJopr5.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "xml-security-0:1.5.1-2.ep5.el6.src", "product": { "name": "xml-security-0:1.5.1-2.ep5.el6.src", "product_id": "xml-security-0:1.5.1-2.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-security@1.5.1-2.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "product": { "name": "rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "product_id": "rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq@3.0.0-21.EmbJopr5.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "product": { "name": "rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "product_id": "rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-jmx-plugin@3.0.0-21.EmbJopr5.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "product": { "name": "rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "product_id": "rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rhq-platform-plugin@3.0.0-14.EmbJopr5.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "product": { "name": "spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "product_id": "spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/spring2@2.5.6-9.SEC03.1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "product": { "name": "jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "product_id": "jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-common-beans@1.0.1-2.Final.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "product": { "name": "jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "product_id": "jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-bootstrap@1.0.2-1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "product": { "name": "jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "product_id": "jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-logmanager@1.1.2-6.GA_patch_01.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "product": { "name": "jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "product_id": "jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-interceptors@1.0.9-0.2.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "aopalliance-0:1.0-5.3.ep5.el6.src", "product": { "name": "aopalliance-0:1.0-5.3.ep5.el6.src", "product_id": "aopalliance-0:1.0-5.3.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/aopalliance@1.0-5.3.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "product": { "name": "jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "product_id": "jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-ext-api@1.0.0-4.1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "product": { "name": "jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "product_id": "jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-cache@1.0.0-4.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "product": { "name": "jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "product_id": "jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-metadata@1.0.0-3.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "product": { "name": "jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "product_id": "jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-timeout@0.1.1-0.8.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "product": { "name": "jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "product_id": "jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-security@1.0.2-0.5.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "product": { "name": "jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "product_id": "jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-transactions@1.0.2-1.6.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "product": { "name": "jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "product_id": "jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jpa-deployers@1.0.0-6.SP2.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "product": { "name": "jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "product_id": "jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jopr-jboss-as-5-plugin@3.0.0-16.EmbJopr5.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-javaee-0:5.0.2-2.ep5.el6.src", "product": { "name": "jboss-javaee-0:5.0.2-2.ep5.el6.src", "product_id": "jboss-javaee-0:5.0.2-2.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-javaee@5.0.2-2.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "product": { "name": "jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "product_id": "jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-cache-core@3.2.11-1.GA.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "product": { "name": "jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "product_id": "jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-core@1.3.9-0.4.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "product": { "name": "mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "product_id": "mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_cluster@1.0.10-12.2.GA_CP04.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "product": { "name": "jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "product_id": "jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jacorb-jboss@2.3.2-2.jboss_1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "product": { "name": "picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "product_id": "picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/picketlink-quickstarts@2.1.5-1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jgroups-1:2.6.22-1.ep5.el6.src", "product": { "name": "jgroups-1:2.6.22-1.ep5.el6.src", "product_id": "jgroups-1:2.6.22-1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jgroups@2.6.22-1.ep5.el6?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "product": { "name": "xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "product_id": "xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/xml-commons@1.3.04-8.2_patch_01.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "product": { "name": "xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "product_id": "xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/xerces-j2@2.9.1-10.patch02.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "product": { "name": "jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "product_id": "jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-ejb3-ext-api-impl@1.0.0-3.7.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "product": { "name": "jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "product_id": "jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-jaxrpc-api_1.1_spec@1.0.0-16.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "product": { "name": "jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "product_id": "jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossts@4.6.1-12.CP13.7.ep5.el6?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "javassist-0:3.12.0-6.SP1.ep5.el6.src", "product": { "name": "javassist-0:3.12.0-6.SP1.ep5.el6.src", "product_id": "javassist-0:3.12.0-6.SP1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/javassist@3.12.0-6.SP1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "product": { "name": "jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "product_id": "jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-common@1.1.0-9.SP10.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "product": { "name": "jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "product_id": "jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws-framework@3.1.2-9.SP13.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "product": { "name": "jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "product_id": "jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-security-negotiation@2.1.3-1.GA.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "product": { "name": "jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "product_id": "jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-aop2@2.1.6-5.CP06.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "product": { "name": "jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "product_id": "jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-seam2@2.2.6.EAP5-14.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "product": { "name": "jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "product_id": "jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jopr-embedded@1.3.4-19.SP6.9.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "product": { "name": "jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "product_id": "jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas-web-tp-licenses@5.2.0-8.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "google-guice-0:2.0-3.ep5.el6.src", "product": { "name": "google-guice-0:2.0-3.ep5.el6.src", "product_id": "google-guice-0:2.0-3.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/google-guice@2.0-3.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "product": { "name": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "product_id": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_cluster-native@1.0.10-10.GA_CP04_patch01.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "product": { "name": "jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "product_id": "jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-eap5-native@5.2.0-6.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jbossas-web-0:5.2.0-16.ep5.el6.src", "product": { "name": "jbossas-web-0:5.2.0-16.ep5.el6.src", "product_id": "jbossas-web-0:5.2.0-16.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas-web@5.2.0-16.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "product": { "name": "resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "product_id": "resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/resteasy@1.2.1-17.CP02_patch02.1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "product": { "name": "rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "product_id": "rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rh-ewp-docs@5.2.0-11.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "product": { "name": "jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "product_id": "jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossws@3.1.2-13.SP15_patch_01.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "product": { "name": "wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "product_id": "wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/wss4j@1.5.12-4_patch_02.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "product": { "name": "jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "product_id": "jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-security-spi@2.0.5-4.SP3_1.ep5.el6?arch=src\u0026epoch=1" } } }, { "category": "product_version", "name": "jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "product": { "name": "jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "product_id": "jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbosssx2@2.0.5-8.3.SP3_1.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "picketlink-federation-0:2.1.5-3.ep5.el6.src", "product": { "name": "picketlink-federation-0:2.1.5-3.ep5.el6.src", "product_id": "picketlink-federation-0:2.1.5-3.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/picketlink-federation@2.1.5-3.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "product": { "name": "jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "product_id": "jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossas-ws-cxf-ewp@5.2.0-11.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "product": { "name": "jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "product_id": "jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/jbossweb@2.1.13-2_patch_01.ep5.el6?arch=src" } } }, { "category": "product_version", "name": "hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "product": { "name": "hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "product_id": "hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/hsqldb@1.8.0.10-11_patch_01.1.ep5.el6?arch=src\u0026epoch=2" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "product": { "name": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "product_id": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_cluster-native@1.0.10-10.GA_CP04_patch01.ep5.el6?arch=i386" } } }, { "category": "product_version", "name": "jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "product": { "name": "jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "product_id": "jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-eap5-native@5.2.0-6.ep5.el6?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "product": { "name": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "product_id": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/mod_cluster-native@1.0.10-10.GA_CP04_patch01.ep5.el6?arch=x86_64" } } }, { "category": "product_version", "name": "jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "product": { "name": "jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "product_id": "jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/jboss-eap5-native@5.2.0-6.ep5.el6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "aopalliance-0:1.0-5.3.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch" }, "product_reference": "aopalliance-0:1.0-5.3.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "aopalliance-0:1.0-5.3.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src" }, "product_reference": "aopalliance-0:1.0-5.3.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch" }, "product_reference": "apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src" }, "product_reference": "apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch" }, "product_reference": "bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src" }, "product_reference": "bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch" }, "product_reference": "bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch" }, "product_reference": "glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src" }, "product_reference": "glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "google-guice-0:2.0-3.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch" }, "product_reference": "google-guice-0:2.0-3.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "google-guice-0:2.0-3.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src" }, "product_reference": "google-guice-0:2.0-3.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch" }, "product_reference": "hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src" }, "product_reference": "hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch" }, "product_reference": "hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src" }, "product_reference": "hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch" }, "product_reference": "hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch" }, "product_reference": "hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src" }, "product_reference": "hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch" }, "product_reference": "hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch" }, "product_reference": "hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch" }, "product_reference": "hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src" }, "product_reference": "hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch" }, "product_reference": "hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch" }, "product_reference": "hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src" }, "product_reference": "hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch" }, "product_reference": "jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src" }, "product_reference": "jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "javassist-0:3.12.0-6.SP1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch" }, "product_reference": "javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "javassist-0:3.12.0-6.SP1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src" }, "product_reference": "javassist-0:3.12.0-6.SP1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch" }, "product_reference": "jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src" }, "product_reference": "jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch" }, "product_reference": "jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-bootstrap-0:1.0.2-1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src" }, "product_reference": "jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch" }, "product_reference": "jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src" }, "product_reference": "jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch" }, "product_reference": "jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cache-pojo-0:3.0.1-1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src" }, "product_reference": "jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch" }, "product_reference": "jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cl-0:2.0.11-4.GA.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src" }, "product_reference": "jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch" }, "product_reference": "jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src" }, "product_reference": "jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch" }, "product_reference": "jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src" }, "product_reference": "jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-core-0:2.2.21-1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch" }, "product_reference": "jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-common-core-0:2.2.21-1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src" }, "product_reference": "jboss-common-core-0:2.2.21-1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-eap5-native-0:5.2.0-6.ep5.el6.i386 as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386" }, "product_reference": "jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-eap5-native-0:5.2.0-6.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src" }, "product_reference": "jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64 as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64" }, "product_reference": "jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch" }, "product_reference": "jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src" }, "product_reference": "jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src" }, "product_reference": "jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src" }, "product_reference": "jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src" }, "product_reference": "jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src" }, "product_reference": "jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src" }, "product_reference": "jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src" }, "product_reference": "jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src" }, "product_reference": "jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src" }, "product_reference": "jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch" }, "product_reference": "jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src" }, "product_reference": "jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch" }, "product_reference": "jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch" }, "product_reference": "jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch" }, "product_reference": "jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-javaee-0:5.0.2-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch" }, "product_reference": "jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-javaee-0:5.0.2-2.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src" }, "product_reference": "jboss-javaee-0:5.0.2-2.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch" }, "product_reference": "jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch" }, "product_reference": "jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src" }, "product_reference": "jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch" }, "product_reference": "jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch" }, "product_reference": "jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch" }, "product_reference": "jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src" }, "product_reference": "jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch" }, "product_reference": "jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src" }, "product_reference": "jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch" }, "product_reference": "jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-naming-0:5.0.3-5.CP02.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src" }, "product_reference": "jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-reflect-0:2.0.4-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch" }, "product_reference": "jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-reflect-0:2.0.4-2.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src" }, "product_reference": "jboss-reflect-0:2.0.4-2.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch" }, "product_reference": "jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src" }, "product_reference": "jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch" }, "product_reference": "jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src" }, "product_reference": "jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch" }, "product_reference": "jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch" }, "product_reference": "jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch" }, "product_reference": "jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch" }, "product_reference": "jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src" }, "product_reference": "jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch" }, "product_reference": "jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src" }, "product_reference": "jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch" }, "product_reference": "jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch" }, "product_reference": "jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src" }, "product_reference": "jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-web-0:5.2.0-16.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch" }, "product_reference": "jbossas-web-0:5.2.0-16.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-web-0:5.2.0-16.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src" }, "product_reference": "jbossas-web-0:5.2.0-16.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-web-client-0:5.2.0-16.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch" }, "product_reference": "jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch" }, "product_reference": "jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src" }, "product_reference": "jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch" }, "product_reference": "jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch" }, "product_reference": "jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src" }, "product_reference": "jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch" }, "product_reference": "jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src" }, "product_reference": "jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch" }, "product_reference": "jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossts-1:4.6.1-12.CP13.7.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src" }, "product_reference": "jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch" }, "product_reference": "jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch" }, "product_reference": "jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-0:2.1.13-2_patch_01.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src" }, "product_reference": "jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch" }, "product_reference": "jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch" }, "product_reference": "jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch" }, "product_reference": "jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch" }, "product_reference": "jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch" }, "product_reference": "jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src" }, "product_reference": "jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch" }, "product_reference": "jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-common-0:1.1.0-9.SP10.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src" }, "product_reference": "jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch" }, "product_reference": "jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src" }, "product_reference": "jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch" }, "product_reference": "jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src" }, "product_reference": "jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.6.22-1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch" }, "product_reference": "jgroups-1:2.6.22-1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jgroups-1:2.6.22-1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src" }, "product_reference": "jgroups-1:2.6.22-1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch" }, "product_reference": "jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src" }, "product_reference": "jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch" }, "product_reference": "jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src" }, "product_reference": "jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch" }, "product_reference": "jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src" }, "product_reference": "jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch" }, "product_reference": "jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src" }, "product_reference": "jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src" }, "product_reference": "mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch" }, "product_reference": "mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch" }, "product_reference": "mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch" }, "product_reference": "mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386 as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386" }, "product_reference": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src" }, "product_reference": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64 as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64" }, "product_reference": "mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch" }, "product_reference": "mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "picketlink-federation-0:2.1.5-3.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch" }, "product_reference": "picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "picketlink-federation-0:2.1.5-3.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src" }, "product_reference": "picketlink-federation-0:2.1.5-3.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch" }, "product_reference": "picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "picketlink-quickstarts-0:2.1.5-1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src" }, "product_reference": "picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch" }, "product_reference": "picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch" }, "product_reference": "picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch" }, "product_reference": "picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch" }, "product_reference": "resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src" }, "product_reference": "resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch" }, "product_reference": "resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch" }, "product_reference": "resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch" }, "product_reference": "resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch" }, "product_reference": "rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rh-ewp-docs-0:5.2.0-11.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src" }, "product_reference": "rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch" }, "product_reference": "rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src" }, "product_reference": "rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src" }, "product_reference": "rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src" }, "product_reference": "rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch" }, "product_reference": "rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch" }, "product_reference": "spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "spring2-0:2.5.6-9.SEC03.1.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src" }, "product_reference": "spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch" }, "product_reference": "spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch" }, "product_reference": "spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch" }, "product_reference": "spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch" }, "product_reference": "spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch" }, "product_reference": "spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch" }, "product_reference": "spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch" }, "product_reference": "wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "wss4j-0:1.5.12-4_patch_02.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src" }, "product_reference": "wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch" }, "product_reference": "xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xerces-j2-0:2.9.1-10.patch02.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src" }, "product_reference": "xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch" }, "product_reference": "xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch" }, "product_reference": "xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src" }, "product_reference": "xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch" }, "product_reference": "xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch" }, "product_reference": "xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch" }, "product_reference": "xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch" }, "product_reference": "xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch" }, "product_reference": "xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch" }, "product_reference": "xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch" }, "product_reference": "xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch" }, "product_reference": "xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-security-0:1.5.1-2.ep5.el6.noarch as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch" }, "product_reference": "xml-security-0:1.5.1-2.ep5.el6.noarch", "relates_to_product_reference": "6Server-JBEWP-5" }, { "category": "default_component_of", "full_product_name": { "name": "xml-security-0:1.5.1-2.ep5.el6.src as a component of Red Hat JBoss Web Platform 5 for RHEL 6 Server", "product_id": "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" }, "product_reference": "xml-security-0:1.5.1-2.ep5.el6.src", "relates_to_product_reference": "6Server-JBEWP-5" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-5066", "discovery_date": "2012-07-23T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "842477" } ], "notes": [ { "category": "description", "text": "twiddle.sh in JBoss AS 5.0 and EAP 5.0 and earlier accepts credentials as command-line arguments, which allows local users to read the credentials by listing the process and its arguments.", "title": "Vulnerability description" }, { "category": "summary", "text": "JBoss: twiddle.sh accepts credentials as command line arguments, exposing them to other local users via a process listing", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-5066" }, { "category": "external", "summary": "RHBZ#842477", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=842477" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-5066", "url": "https://www.cve.org/CVERecord?id=CVE-2009-5066" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-5066", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-5066" } ], "release_date": "2009-10-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "JBoss: twiddle.sh accepts credentials as command line arguments, exposing them to other local users via a process listing" }, { "cve": "CVE-2011-1096", "cwe": { "id": "CWE-327", "name": "Use of a Broken or Risky Cryptographic Algorithm" }, "discovery_date": "2011-02-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "681916" } ], "notes": [ { "category": "description", "text": "The W3C XML Encryption Standard, as used in the JBoss Web Services (JBossWS) component in JBoss Enterprise Portal Platform before 5.2.2 and other products, when using block ciphers in cipher-block chaining (CBC) mode, allows remote attackers to obtain plaintext data via a chosen-ciphertext attack on SOAP responses, aka \"character encoding pattern attack.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "jbossws: Prone to character encoding pattern attack (XML Encryption flaw)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-1096" }, { "category": "external", "summary": "RHBZ#681916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=681916" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-1096", "url": "https://www.cve.org/CVERecord?id=CVE-2011-1096" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1096", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1096" } ], "release_date": "2011-10-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 7.8, "confidentialityImpact": "COMPLETE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "jbossws: Prone to character encoding pattern attack (XML Encryption flaw)" }, { "acknowledgments": [ { "names": [ "Juraj Somorovsky" ], "organization": "Ruhr-University Bochum" } ], "cve": "CVE-2011-2487", "cwe": { "id": "CWE-327", "name": "Use of a Broken or Risky Cryptographic Algorithm" }, "discovery_date": "2011-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "713539" } ], "notes": [ { "category": "description", "text": "A flaw was found in JBoss web services where the services used a weak symmetric encryption protocol, PKCS#1 v1.5. An attacker could use this weakness in chosen-ciphertext attacks to recover the symmetric key and conduct further attacks.", "title": "Vulnerability description" }, { "category": "summary", "text": "jbossws: Prone to Bleichenbacher attack against to be distributed symmetric key", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw affects Apache CXF (WSS4J) and jbossws-native as shipped with various JBoss products. It does not affect JBoss Enterprise Application Platform 6 and JBoss Application Server 7.1.1 and above. These products include WSS4J 1.6.5, which incorporates a fix for this flaw. On affected products, this flaw can be mitigated by using the RSA-OAEP key wrap algorithm, instead of the default RSA-v1.5 algorithm. To use RSA-OAEP, edit the jboss-ws-security configuration file and add the property keyWrapAlgorithm=\"rsa_oaep\" to the encrypt element.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2487" }, { "category": "external", "summary": "RHBZ#713539", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=713539" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2487", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2487" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2487", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2487" }, { "category": "external", "summary": "https://www.nds.ruhr-uni-bochum.de/research/publications/breaking-xml-encryption-pkcs15/", "url": "https://www.nds.ruhr-uni-bochum.de/research/publications/breaking-xml-encryption-pkcs15/" } ], "release_date": "2012-09-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 7.8, "confidentialityImpact": "COMPLETE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "jbossws: Prone to Bleichenbacher attack against to be distributed symmetric key" }, { "cve": "CVE-2011-2730", "discovery_date": "2011-09-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "737608" } ], "notes": [ { "category": "description", "text": "VMware SpringSource Spring Framework before 2.5.6.SEC03, 2.5.7.SR023, and 3.x before 3.0.6, when a container supports Expression Language (EL), evaluates EL expressions in tags twice, which allows remote attackers to obtain sensitive information via a (1) name attribute in a (a) spring:hasBindErrors tag; (2) path attribute in a (b) spring:bind or (c) spring:nestedpath tag; (3) arguments, (4) code, (5) text, (6) var, (7) scope, or (8) message attribute in a (d) spring:message or (e) spring:theme tag; or (9) var, (10) scope, or (11) value attribute in a (f) spring:transform tag, aka \"Expression Language Injection.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "Framework: Information (internal server information, classpath, local working directories, session IDs) disclosure", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw was originally reported as resulting in information disclosure only, and was therefore assessed as having low security impact. On this basis, it was planned that future updates to JBoss products may address this flaw. New research [0] has now shown that this flaw can lead to remote code execution. The security impact has been re-assessed as important, and Red Hat is now working on patches for all affected products.\n\n[0] http://danamodio.com/application-security/discoveries/spring-remote-code-with-expression-language-injection/", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2730" }, { "category": "external", "summary": "RHBZ#737608", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=737608" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2730", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2730" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2730", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2730" } ], "release_date": "2011-09-09T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "Framework: Information (internal server information, classpath, local working directories, session IDs) disclosure" }, { "cve": "CVE-2011-2908", "cwe": { "id": "CWE-352", "name": "Cross-Site Request Forgery (CSRF)" }, "discovery_date": "2007-02-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "730176" } ], "notes": [ { "category": "description", "text": "Cross-site request forgery (CSRF) vulnerability in the JMX Console (jmx-console) in JBoss Enterprise Portal Platform before 5.2.2, BRMS Platform 5.3.0 before roll up patch1, and SOA Platform 5.3.0 allows remote authenticated users to hijack the authentication of arbitrary users for requests that perform operations on MBeans and possibly execute arbitrary code via unspecified vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "CSRF on jmx-console allows invocation of operations on mbeans", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-2908" }, { "category": "external", "summary": "RHBZ#730176", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=730176" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-2908", "url": "https://www.cve.org/CVERecord?id=CVE-2011-2908" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2908", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2908" } ], "release_date": "2007-02-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:S/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "CSRF on jmx-console allows invocation of operations on mbeans" }, { "acknowledgments": [ { "names": [ "Tyler Krpata" ] } ], "cve": "CVE-2011-4575", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2011-12-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "760387" } ], "notes": [ { "category": "description", "text": "It was found that the parameters passed to operation invocations on the JMX console were not properly sanitized. Remote attackers could use this flaw to inject arbitrary web script or HTML into the JMX console.", "title": "Vulnerability description" }, { "category": "summary", "text": "Console: XSS in invoke operation", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2011-4575" }, { "category": "external", "summary": "RHBZ#760387", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=760387" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4575", "url": "https://www.cve.org/CVERecord?id=CVE-2011-4575" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4575", "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4575" } ], "release_date": "2013-01-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "Console: XSS in invoke operation" }, { "cve": "CVE-2012-0034", "discovery_date": "2012-01-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "772835" } ], "notes": [ { "category": "description", "text": "The NonManagedConnectionFactory in JBoss Enterprise Application Platform (EAP) 5.1.2 and 5.2.0, Web Platform (EWP) 5.1.2 and 5.2.0, and BRMS Platform before 5.3.1 logs the username and password in cleartext when an exception is thrown, which allows local users to obtain sensitive information by reading the log file.", "title": "Vulnerability description" }, { "category": "summary", "text": "Cache: NonManagedConnectionFactory will log password in clear text when an exception occurs", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0034" }, { "category": "external", "summary": "RHBZ#772835", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=772835" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0034", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0034" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0034", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0034" } ], "release_date": "2011-12-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 1.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:S/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "Cache: NonManagedConnectionFactory will log password in clear text when an exception occurs" }, { "acknowledgments": [ { "names": [ "David Jorm" ], "organization": "Red Hat Security Response Team", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2012-0874", "discovery_date": "2012-02-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "795645" } ], "notes": [ { "category": "description", "text": "The (1) JMXInvokerHAServlet and (2) EJBInvokerHAServlet invoker servlets in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 do not require authentication by default in certain profiles, which might allow remote attackers to invoke MBean methods and execute arbitrary code via unspecified vectors. NOTE: this issue can only be exploited when the interceptor is not properly configured with a \"second layer of authentication,\" or when used in conjunction with other vulnerabilities that bypass this second layer.", "title": "Vulnerability description" }, { "category": "summary", "text": "JBoss invoker servlets do not require authentication", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0874" }, { "category": "external", "summary": "RHBZ#795645", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=795645" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0874", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0874" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0874", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0874" } ], "release_date": "2013-01-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "JBoss invoker servlets do not require authentication" }, { "acknowledgments": [ { "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2012-2377", "discovery_date": "2012-05-17T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "823392" } ], "notes": [ { "category": "description", "text": "JGroups diagnostics service in JBoss Enterprise Portal Platform before 5.2.2, SOA Platform before 5.3.0, and BRMS Platform before 5.3.0, is enabled without authentication when started by the JGroups channel, which allows remote attackers in adjacent networks to read diagnostics information via a crafted IP multicast.", "title": "Vulnerability description" }, { "category": "summary", "text": "JGroups diagnostics service enabled by default with no authentication when a JGroups channel is started", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-2377" }, { "category": "external", "summary": "RHBZ#823392", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=823392" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-2377", "url": "https://www.cve.org/CVERecord?id=CVE-2012-2377" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-2377", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-2377" } ], "release_date": "2012-06-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "JGroups diagnostics service enabled by default with no authentication when a JGroups channel is started" }, { "acknowledgments": [ { "names": [ "Apache CXF project" ] } ], "cve": "CVE-2012-2379", "discovery_date": "2012-05-28T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "826534" } ], "notes": [ { "category": "description", "text": "Apache CXF 2.4.x before 2.4.8, 2.5.x before 2.5.4, and 2.6.x before 2.6.1, when a Supporting Token specifies a child WS-SecurityPolicy 1.1 or 1.2 policy, does not properly ensure that an XML element is signed or encrypted, which has unspecified impact and attack vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "apache-cxf: Apache CXF does not verify that elements were signed / encrypted by a particular Supporting Token", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-2379" }, { "category": "external", "summary": "RHBZ#826534", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=826534" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-2379", "url": "https://www.cve.org/CVERecord?id=CVE-2012-2379" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-2379", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-2379" }, { "category": "external", "summary": "http://cxf.apache.org/cve-2012-2379.html", "url": "http://cxf.apache.org/cve-2012-2379.html" } ], "release_date": "2012-06-07T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "apache-cxf: Apache CXF does not verify that elements were signed / encrypted by a particular Supporting Token" }, { "acknowledgments": [ { "names": [ "Carlo de Wolf" ], "organization": "Red Hat", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2012-3369", "discovery_date": "2012-06-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "836451" } ], "notes": [ { "category": "description", "text": "The CallerIdentityLoginModule in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 allows remote attackers to gain privileges of the previous user via a null password, which causes the previous user\u0027s password to be used.", "title": "Vulnerability description" }, { "category": "summary", "text": "JBoss: CallerIdentityLoginModule retaining password from previous call if a null password is provided", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3369" }, { "category": "external", "summary": "RHBZ#836451", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=836451" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3369", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3369" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3369", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3369" } ], "release_date": "2013-01-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "JBoss: CallerIdentityLoginModule retaining password from previous call if a null password is provided" }, { "acknowledgments": [ { "names": [ "Carlo de Wolf" ], "organization": "Red Hat", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2012-3370", "discovery_date": "2012-06-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "836456" } ], "notes": [ { "category": "description", "text": "The SecurityAssociation.getCredential method in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 returns the credentials of the previous user when a security context is not provided, which allows remote attackers to gain privileges as other users.", "title": "Vulnerability description" }, { "category": "summary", "text": "JBoss: SecurityAssociation.getCredential() will return the previous credential if no security context is provided", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3370" }, { "category": "external", "summary": "RHBZ#836456", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=836456" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3370", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3370" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3370", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3370" } ], "release_date": "2013-01-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JBoss: SecurityAssociation.getCredential() will return the previous credential if no security context is provided" }, { "cve": "CVE-2012-3546", "discovery_date": "2012-12-05T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "883634" } ], "notes": [ { "category": "description", "text": "org/apache/catalina/realm/RealmBase.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.30, when FORM authentication is used, allows remote attackers to bypass security-constraint checks by leveraging a previous setUserPrincipal call and then placing /j_security_check at the end of a URI.", "title": "Vulnerability description" }, { "category": "summary", "text": "Web: Bypass of security constraints", "title": "Vulnerability summary" }, { "category": "other", "text": "Tomcat 5.5 has reached the end of its supported upstream life-cycle, and the Apache Tomcat project no longer tests security flaws to determine whether they affect Tomcat 5.5. Red Hat has tested tomcat 5.5 as shipped with Red Hat Enterprise Linux 5 and JBoss Enterprise Web Server 1, and found that it is affected by this flaw. Patches for tomcat 5.5 to address this flaw have been provided.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3546" }, { "category": "external", "summary": "RHBZ#883634", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=883634" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3546", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3546" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3546", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3546" } ], "release_date": "2012-12-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 5.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "Web: Bypass of security constraints" }, { "acknowledgments": [ { "names": [ "Derek Horton" ], "organization": "Red Hat", "summary": "This issue was discovered by Red Hat." } ], "cve": "CVE-2012-5478", "discovery_date": "2012-11-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "874349" } ], "notes": [ { "category": "description", "text": "The AuthorizationInterceptor in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 does not properly restrict access, which allows remote authenticated users to bypass intended role restrictions and perform arbitrary JMX operations via unspecified vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "JBoss: AuthorizationInterceptor allows JMX operation to proceed despite authorization failure", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-5478" }, { "category": "external", "summary": "RHBZ#874349", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=874349" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-5478", "url": "https://www.cve.org/CVERecord?id=CVE-2012-5478" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5478", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5478" } ], "release_date": "2013-01-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-01-24T18:41:00+00:00", "details": "Note: Manual action is required to apply the fix for CVE-2011-2730. If your\nsystem has deployed applications which use Spring framework, the context\nparameter \"springJspExpressionSupport\" must be set to \"false\" to mitigate\nthis flaw, for example, in the application\u0027s web.xml file. This will\nprevent the double-evaluation of EL expressions that led to this flaw.\n\nCVE-2012-2379 has been addressed by disabling the affected configuration in\nthis release. If you use the affected configuration, an exception will be\nthrown and the relevant application will not deploy to the server. A patch\nthat allows the affected configuration to be used without this\nvulnerability is available in JBoss Enterprise Application Platform 6.0.1.\n\nWarning: Before applying this update, back up your existing JBoss\nEnterprise Web Platform installation (including all applications and\nconfiguration files).\n\nAll users of JBoss Enterprise Web Platform 5.1.2 on Red Hat Enterprise\nLinux 6 are advised to upgrade to these updated packages. The JBoss server\nprocess must be restarted for the update to take effect.\n\nBefore applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0195" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:N", "version": "2.0" }, "products": [ "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.noarch", "6Server-JBEWP-5:aopalliance-0:1.0-5.3.ep5.el6.src", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.noarch", "6Server-JBEWP-5:apache-cxf-0:2.2.12-6.1.patch_04.ep5.el6.src", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:bsh2-0:2.0-0.b4.15.patch01.ep5.el6.src", "6Server-JBEWP-5:bsh2-bsf-0:2.0-0.b4.15.patch01.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.noarch", "6Server-JBEWP-5:glassfish-jaxb-0:2.1.12-12_patch_03.ep5.el6.src", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.noarch", "6Server-JBEWP-5:google-guice-0:2.0-3.ep5.el6.src", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-1:3.3.2-1.9.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-annotations-0:3.4.0-3.6.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-annotations-javadoc-0:3.4.0-3.6.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-entitymanager-0:3.4.0-4.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-entitymanager-javadoc-0:3.4.0-4.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-javadoc-1:3.3.2-1.9.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hibernate3-search-0:3.1.1-2.5.GA_CP05.ep5.el6.src", "6Server-JBEWP-5:hibernate3-search-javadoc-0:3.1.1-2.5.GA_CP05.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.noarch", "6Server-JBEWP-5:hsqldb-2:1.8.0.10-11_patch_01.1.ep5.el6.src", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.noarch", "6Server-JBEWP-5:jacorb-jboss-0:2.3.2-2.jboss_1.ep5.el6.src", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.noarch", "6Server-JBEWP-5:javassist-0:3.12.0-6.SP1.ep5.el6.src", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.noarch", "6Server-JBEWP-5:jboss-aop2-0:2.1.6-5.CP06.ep5.el6.src", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-bootstrap-0:1.0.2-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-core-0:3.2.11-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cache-pojo-0:3.0.1-1.ep5.el6.src", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cl-0:2.0.11-4.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-cluster-ha-server-api-0:1.2.1-2.ep5.el6.src", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-beans-0:1.0.1-2.Final.ep5.el6.src", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-common-core-0:2.2.21-1.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.i386", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.src", "6Server-JBEWP-5:jboss-eap5-native-0:5.2.0-6.ep5.el6.x86_64", "6Server-JBEWP-5:jboss-ejb-3.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-cache-0:1.0.0-4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-core-0:1.3.9-0.4.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-0:1.0.0-4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-ext-api-impl-0:1.0.0-3.7.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-interceptors-0:1.0.9-0.2.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metadata-0:1.0.0-3.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-metrics-deployer-0:1.1.1-0.1.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-security-0:1.0.2-0.5.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-0:0.1.1-0.8.ep5.el6.src", "6Server-JBEWP-5:jboss-ejb3-timeout-3.0-api-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-timeout-spi-0:0.1.1-0.8.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.noarch", "6Server-JBEWP-5:jboss-ejb3-transactions-0:1.0.2-1.6.ep5.el6.src", "6Server-JBEWP-5:jboss-jacc-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jad-1.2-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaspi-1.0-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-javaee-0:5.0.2-2.ep5.el6.src", "6Server-JBEWP-5:jboss-javaee-poms-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jaxrpc-api_1.1_spec-0:1.0.0-16.ep5.el6.src", "6Server-JBEWP-5:jboss-jca-1.5-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jms-1.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-jpa-deployers-0:1.0.0-6.SP2.ep5.el6.src", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jboss-logmanager-0:1.1.2-6.GA_patch_01.ep5.el6.src", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.noarch", "6Server-JBEWP-5:jboss-naming-0:5.0.3-5.CP02.ep5.el6.src", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-reflect-0:2.0.4-2.ep5.el6.src", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-remoting-0:2.5.4-10.SP4.1.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-0:2.2.6.EAP5-14.ep5.el6.src", "6Server-JBEWP-5:jboss-seam2-docs-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-examples-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-seam2-runtime-0:2.2.6.EAP5-14.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-negotiation-0:2.1.3-1.GA.ep5.el6.src", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jboss-security-spi-1:2.0.5-4.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jboss-transaction-1.0.1-api-0:5.0.2-2.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.noarch", "6Server-JBEWP-5:jboss-vfs2-0:2.2.1-4.GA.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-0:5.2.0-16.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-client-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-web-tp-licenses-0:5.2.0-8.ep5.el6.src", "6Server-JBEWP-5:jbossas-web-ws-native-0:5.2.0-16.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:jbossas-ws-cxf-ewp-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.noarch", "6Server-JBEWP-5:jbosssx2-0:2.0.5-8.3.SP3_1.ep5.el6.src", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossts-1:4.6.1-12.CP13.7.ep5.el6.src", "6Server-JBEWP-5:jbossts-javadoc-1:4.6.1-12.CP13.7.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-0:2.1.13-2_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossweb-el-1.0-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-jsp-2.1-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-lib-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossweb-servlet-2.5-api-0:2.1.13-2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-0:3.1.2-13.SP15_patch_01.ep5.el6.src", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-common-0:1.1.0-9.SP10.ep5.el6.src", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-framework-0:3.1.2-9.SP13.ep5.el6.src", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.noarch", "6Server-JBEWP-5:jbossws-spi-0:1.1.2-6.SP8.ep5.el6.src", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.noarch", "6Server-JBEWP-5:jgroups-1:2.6.22-1.ep5.el6.src", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.noarch", "6Server-JBEWP-5:jopr-embedded-0:1.3.4-19.SP6.9.ep5.el6.src", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-hibernate-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-as-5-plugin-0:3.0.0-16.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:jopr-jboss-cache-v3-plugin-0:3.0.0-15.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-0:1.0.10-12.2.GA_CP04.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-demo-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossas-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-jbossweb2-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.i386", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.src", "6Server-JBEWP-5:mod_cluster-native-0:1.0.10-10.GA_CP04_patch01.ep5.el6.x86_64", "6Server-JBEWP-5:mod_cluster-tomcat6-0:1.0.10-12.2.GA_CP04.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-federation-0:2.1.5-3.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-0:2.1.5-1.ep5.el6.src", "6Server-JBEWP-5:picketlink-quickstarts-idp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-pdp-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:picketlink-quickstarts-sts-0:2.1.5-1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-0:1.2.1-17.CP02_patch02.1.ep5.el6.src", "6Server-JBEWP-5:resteasy-examples-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-javadoc-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:resteasy-manual-0:1.2.1-17.CP02_patch02.1.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rh-ewp-docs-0:5.2.0-11.ep5.el6.src", "6Server-JBEWP-5:rh-ewp-docs-examples-0:5.2.0-11.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-ant-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-common-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-client-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-comm-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-dbutils-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-domain-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-gui-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-native-system-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-api-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugin-container-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-plugindoc-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-core-util-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-filetemplate-bundle-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-helpers-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jboss-as-common-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-jmx-plugin-0:3.0.0-21.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-modules-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-platform-plugin-0:3.0.0-14.EmbJopr5.ep5.el6.src", "6Server-JBEWP-5:rhq-plugin-validator-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginAnnotations-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-pluginGen-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-plugins-parent-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:rhq-rtfilter-0:3.0.0-21.EmbJopr5.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-0:2.5.6-9.SEC03.1.ep5.el6.src", "6Server-JBEWP-5:spring2-agent-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-all-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-aop-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-beans-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-context-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:spring2-core-0:2.5.6-9.SEC03.1.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.noarch", "6Server-JBEWP-5:wss4j-0:1.5.12-4_patch_02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xerces-j2-0:2.9.1-10.patch02.ep5.el6.src", "6Server-JBEWP-5:xerces-j2-scripts-0:2.9.1-10.patch02.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-0:1.3.04-8.2_patch_01.ep5.el6.src", "6Server-JBEWP-5:xml-commons-jaxp-1.1-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.2-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-jaxp-1.3-apis-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-resolver12-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which10-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-commons-which11-0:1.3.04-8.2_patch_01.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.noarch", "6Server-JBEWP-5:xml-security-0:1.5.1-2.ep5.el6.src" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JBoss: AuthorizationInterceptor allows JMX operation to proceed despite authorization failure" } ] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.