Vulnerability Database
Blog
FAQ
Docs
RHSA-2014:1088
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2014:1088
Import Source
https://security.access.redhat.com/data/osv/RHSA-2014:1088.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2014:1088
Related
CVE-2013-4590
CVE-2014-0118
CVE-2014-0119
CVE-2014-0226
CVE-2014-0227
CVE-2014-0231
Published
2024-09-15T21:26:13Z
Modified
2024-09-15T21:26:13Z
Summary
Red Hat Security Advisory: Red Hat JBoss Web Server 2.1.0 update
Details
References
https://access.redhat.com/errata/RHSA-2014:1088
https://access.redhat.com/security/updates/classification/#important
https://access.redhat.com/documentation/en-US/JBoss_Enterprise_Web_Server/2.1/html/2.1.0_Release_Notes/index.html
https://bugzilla.redhat.com/show_bug.cgi?id=1069911
https://bugzilla.redhat.com/show_bug.cgi?id=1102038
https://bugzilla.redhat.com/show_bug.cgi?id=1120596
https://bugzilla.redhat.com/show_bug.cgi?id=1120601
https://bugzilla.redhat.com/show_bug.cgi?id=1120603
https://access.redhat.com/security/data/csaf/v2/advisories/2014/rhsa-2014_1088.json
https://access.redhat.com/security/cve/CVE-2013-4590
https://www.cve.org/CVERecord?id=CVE-2013-4590
https://nvd.nist.gov/vuln/detail/CVE-2013-4590
https://access.redhat.com/security/cve/CVE-2014-0118
https://www.cve.org/CVERecord?id=CVE-2014-0118
https://nvd.nist.gov/vuln/detail/CVE-2014-0118
http://httpd.apache.org/security/vulnerabilities_24.html
https://access.redhat.com/security/cve/CVE-2014-0119
https://www.cve.org/CVERecord?id=CVE-2014-0119
https://nvd.nist.gov/vuln/detail/CVE-2014-0119
https://access.redhat.com/security/cve/CVE-2014-0226
https://www.cve.org/CVERecord?id=CVE-2014-0226
https://nvd.nist.gov/vuln/detail/CVE-2014-0226
https://access.redhat.com/security/cve/CVE-2014-0227
https://bugzilla.redhat.com/show_bug.cgi?id=1109196
https://www.cve.org/CVERecord?id=CVE-2014-0227
https://nvd.nist.gov/vuln/detail/CVE-2014-0227
https://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.43
https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.55
https://access.redhat.com/security/cve/CVE-2014-0231
https://www.cve.org/CVERecord?id=CVE-2014-0231
https://nvd.nist.gov/vuln/detail/CVE-2014-0231
Affected packages
Red Hat:jboss_enterprise_web_server:2::el5
/
antlr-eap6
Package
Name
antlr-eap6
Purl
pkg:rpm/redhat/antlr-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.7.7-17.redhat_4.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
apache-commons-collections-eap6
Package
Name
apache-commons-collections-eap6
Purl
pkg:rpm/redhat/apache-commons-collections-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.2.1-15.redhat_3.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
apache-commons-collections-tomcat-eap6
Package
Name
apache-commons-collections-tomcat-eap6
Purl
pkg:rpm/redhat/apache-commons-collections-tomcat-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.2.1-15.redhat_3.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
apache-commons-daemon-eap6
Package
Name
apache-commons-daemon-eap6
Purl
pkg:rpm/redhat/apache-commons-daemon-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:1.0.15-5.redhat_1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
apache-commons-daemon-jsvc-eap6
Package
Name
apache-commons-daemon-jsvc-eap6
Purl
pkg:rpm/redhat/apache-commons-daemon-jsvc-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:1.0.15-6.redhat_2.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
apache-commons-pool-eap6
Package
Name
apache-commons-pool-eap6
Purl
pkg:rpm/redhat/apache-commons-pool-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.6-7.redhat_6.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
apache-commons-pool-tomcat-eap6
Package
Name
apache-commons-pool-tomcat-eap6
Purl
pkg:rpm/redhat/apache-commons-pool-tomcat-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.6-7.redhat_6.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
dom4j-eap6
Package
Name
dom4j-eap6
Purl
pkg:rpm/redhat/dom4j-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.6.1-20.redhat_6.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
ecj3
Package
Name
ecj3
Purl
pkg:rpm/redhat/ecj3
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:3.7.2-9.redhat_3.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
hibernate4-c3p0-eap6
Package
Name
hibernate4-c3p0-eap6
Purl
pkg:rpm/redhat/hibernate4-c3p0-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.2.14-3.SP1_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
hibernate4-core-eap6
Package
Name
hibernate4-core-eap6
Purl
pkg:rpm/redhat/hibernate4-core-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.2.14-3.SP1_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
hibernate4-eap6
Package
Name
hibernate4-eap6
Purl
pkg:rpm/redhat/hibernate4-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.2.14-3.SP1_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
hibernate4-entitymanager-eap6
Package
Name
hibernate4-entitymanager-eap6
Purl
pkg:rpm/redhat/hibernate4-entitymanager-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.2.14-3.SP1_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
hibernate4-envers-eap6
Package
Name
hibernate4-envers-eap6
Purl
pkg:rpm/redhat/hibernate4-envers-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.2.14-3.SP1_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
hibernate4-infinispan-eap6
Package
Name
hibernate4-infinispan-eap6
Purl
pkg:rpm/redhat/hibernate4-infinispan-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.2.14-3.SP1_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
httpd
Package
Name
httpd
Purl
pkg:rpm/redhat/httpd
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.26-35.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
httpd-devel
Package
Name
httpd-devel
Purl
pkg:rpm/redhat/httpd-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.26-35.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
httpd-manual
Package
Name
httpd-manual
Purl
pkg:rpm/redhat/httpd-manual
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.26-35.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
httpd-tools
Package
Name
httpd-tools
Purl
pkg:rpm/redhat/httpd-tools
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.26-35.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
javassist-eap6
Package
Name
javassist-eap6
Purl
pkg:rpm/redhat/javassist-eap6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.18.1-1.GA_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
jboss-logging
Package
Name
jboss-logging
Purl
pkg:rpm/redhat/jboss-logging
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.1.4-1.GA_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
jboss-transaction-api_1.1_spec
Package
Name
jboss-transaction-api_1.1_spec
Purl
pkg:rpm/redhat/jboss-transaction-api_1.1_spec
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.0.1-12.Final_redhat_2.2.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
mod_cluster
Package
Name
mod_cluster
Purl
pkg:rpm/redhat/mod_cluster
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.2.9-1.Final_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
mod_cluster-native
Package
Name
mod_cluster-native
Purl
pkg:rpm/redhat/mod_cluster-native
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.2.9-3.Final_redhat_2.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
mod_cluster-tomcat6
Package
Name
mod_cluster-tomcat6
Purl
pkg:rpm/redhat/mod_cluster-tomcat6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.2.9-1.Final_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
mod_cluster-tomcat7
Package
Name
mod_cluster-tomcat7
Purl
pkg:rpm/redhat/mod_cluster-tomcat7
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.2.9-1.Final_redhat_1.1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
mod_jk
Package
Name
mod_jk
Purl
pkg:rpm/redhat/mod_jk
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.2.40-2.redhat_1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
mod_jk-ap22
Package
Name
mod_jk-ap22
Purl
pkg:rpm/redhat/mod_jk-ap22
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.2.40-2.redhat_1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
mod_jk-manual
Package
Name
mod_jk-manual
Purl
pkg:rpm/redhat/mod_jk-manual
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.2.40-2.redhat_1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
mod_rt
Package
Name
mod_rt
Purl
pkg:rpm/redhat/mod_rt
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.1-6.GA.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
mod_snmp
Package
Name
mod_snmp
Purl
pkg:rpm/redhat/mod_snmp
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.1-13.GA.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
mod_ssl
Package
Name
mod_ssl
Purl
pkg:rpm/redhat/mod_ssl
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:2.2.26-35.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
storeconfig-tc6
Package
Name
storeconfig-tc6
Purl
pkg:rpm/redhat/storeconfig-tc6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.0.1-7.Alpha3_redhat_12.3.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
storeconfig-tc7
Package
Name
storeconfig-tc7
Purl
pkg:rpm/redhat/storeconfig-tc7
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.0.1-7.Alpha3_redhat_12.5.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat-native
Package
Name
tomcat-native
Purl
pkg:rpm/redhat/tomcat-native
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.1.30-2.redhat_1.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat6
Package
Name
tomcat6
Purl
pkg:rpm/redhat/tomcat6
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:6.0.41-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat6-admin-webapps
Package
Name
tomcat6-admin-webapps
Purl
pkg:rpm/redhat/tomcat6-admin-webapps
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:6.0.41-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat6-docs-webapp
Package
Name
tomcat6-docs-webapp
Purl
pkg:rpm/redhat/tomcat6-docs-webapp
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:6.0.41-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat6-el-2.1-api
Package
Name
tomcat6-el-2.1-api
Purl
pkg:rpm/redhat/tomcat6-el-2.1-api
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:6.0.41-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat6-javadoc
Package
Name
tomcat6-javadoc
Purl
pkg:rpm/redhat/tomcat6-javadoc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:6.0.41-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat6-jsp-2.1-api
Package
Name
tomcat6-jsp-2.1-api
Purl
pkg:rpm/redhat/tomcat6-jsp-2.1-api
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:6.0.41-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat6-lib
Package
Name
tomcat6-lib
Purl
pkg:rpm/redhat/tomcat6-lib
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:6.0.41-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat6-log4j
Package
Name
tomcat6-log4j
Purl
pkg:rpm/redhat/tomcat6-log4j
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:6.0.41-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat6-servlet-2.5-api
Package
Name
tomcat6-servlet-2.5-api
Purl
pkg:rpm/redhat/tomcat6-servlet-2.5-api
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:6.0.41-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat6-webapps
Package
Name
tomcat6-webapps
Purl
pkg:rpm/redhat/tomcat6-webapps
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:6.0.41-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat7
Package
Name
tomcat7
Purl
pkg:rpm/redhat/tomcat7
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.54-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat7-admin-webapps
Package
Name
tomcat7-admin-webapps
Purl
pkg:rpm/redhat/tomcat7-admin-webapps
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.54-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat7-docs-webapp
Package
Name
tomcat7-docs-webapp
Purl
pkg:rpm/redhat/tomcat7-docs-webapp
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.54-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat7-el-2.2-api
Package
Name
tomcat7-el-2.2-api
Purl
pkg:rpm/redhat/tomcat7-el-2.2-api
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.54-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat7-javadoc
Package
Name
tomcat7-javadoc
Purl
pkg:rpm/redhat/tomcat7-javadoc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.54-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat7-jsp-2.2-api
Package
Name
tomcat7-jsp-2.2-api
Purl
pkg:rpm/redhat/tomcat7-jsp-2.2-api
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.54-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat7-lib
Package
Name
tomcat7-lib
Purl
pkg:rpm/redhat/tomcat7-lib
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.54-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat7-log4j
Package
Name
tomcat7-log4j
Purl
pkg:rpm/redhat/tomcat7-log4j
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.54-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat7-servlet-3.0-api
Package
Name
tomcat7-servlet-3.0-api
Purl
pkg:rpm/redhat/tomcat7-servlet-3.0-api
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.54-6_patch_02.ep6.el5
Red Hat:jboss_enterprise_web_server:2::el5
/
tomcat7-webapps
Package
Name
tomcat7-webapps
Purl
pkg:rpm/redhat/tomcat7-webapps
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:7.0.54-6_patch_02.ep6.el5
RHSA-2014:1088 - OSV