Lucene search
RedHatRHSA-2020:0605HistoryFeb 25, 2020 - 5:21 p.m.
(RHSA-2020:0605) Important: Red Hat JBoss Enterprise Application Platform 7.2 security update
2020-02-2517:21:01
access.redhat.com
51
0.009 Low
EPSS
Percentile
82.4%
Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.
This asynchronous patch is a security update for the wildfly-security-manager package in Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux 6, 7, and 8.
Security Fix(es):
- netty: HTTP Request Smuggling due to Transfer-Encoding whitespace mishandling (CVE-2020-7238)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, see the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | noarch | eap7-netty | < 4.1.45-1.Final_redhat_00001.1.el8eap | eap7-netty-4.1.45-1.Final_redhat_00001.1.el8eap.noarch.rpm |
| RedHat | 7 | noarch | eap7-netty | < 4.1.45-1.Final_redhat_00001.1.el7eap | eap7-netty-4.1.45-1.Final_redhat_00001.1.el7eap.noarch.rpm |
| RedHat | 7 | noarch | eap7-netty-all | < 4.1.45-1.Final_redhat_00001.1.el7eap | eap7-netty-all-4.1.45-1.Final_redhat_00001.1.el7eap.noarch.rpm |
| RedHat | 6 | noarch | eap7-netty-all | < 4.1.45-1.Final_redhat_00001.1.el6eap | eap7-netty-all-4.1.45-1.Final_redhat_00001.1.el6eap.noarch.rpm |
| RedHat | 6 | noarch | eap7-netty | < 4.1.45-1.Final_redhat_00001.1.el6eap | eap7-netty-4.1.45-1.Final_redhat_00001.1.el6eap.noarch.rpm |
| RedHat | 8 | noarch | eap7-netty-all | < 4.1.45-1.Final_redhat_00001.1.el8eap | eap7-netty-all-4.1.45-1.Final_redhat_00001.1.el8eap.noarch.rpm |
Related
redhat
redhat
(RHSA-2020:0567) Important: Red Hat build of Eclipse Vert.x 3.8.5 security update
2020-03-03 16:07:01
(RHSA-2020:0606) Important: Red Hat JBoss Enterprise Application Platform 7.2 security update
2020-02-25 17:21:05
(RHSA-2020:0497) Important: AMQ Online security update
2020-02-13 14:03:36
nessus
nessus
Debian DLA-2109-1 : netty security update
2020-02-20 00:00:00
RHEL 6 / 7 / 8 : Red Hat JBoss Enterprise Application Platform 7.2 (RHSA-2020:0605)
2020-02-27 00:00:00
RHEL 6 / 8 : AMQ Clients 2.6.0 Release (Important) (RHSA-2020:0601)
2023-01-23 00:00:00
osv
osv
netty - security update
2020-02-19 00:00:00
netty-3.9 vulnerabilities
2020-10-22 18:26:07
netty - security update
2020-09-04 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2109-1)
2020-02-20 00:00:00
Fedora: Security Advisory for netty (FEDORA-2020-66b5f85ccc)
2020-09-26 00:00:00
Ubuntu: Security Advisory (USN-4600-1)
2020-10-23 00:00:00
debian
debian
[SECURITY] [DLA 2109-1] netty security update
2020-02-19 18:04:02
[SECURITY] [DLA 2364-1] netty security update
2020-09-04 18:39:54
[SECURITY] [DLA 2110-1] netty-3.9 security update
2020-02-19 18:04:08
fedora
fedora
[SECURITY] Fedora 33 Update: jctools-3.1.0-1.fc33
2020-09-25 17:16:36
[SECURITY] Fedora 33 Update: netty-4.1.51-1.fc33
2020-09-25 17:16:37
ubuntu
ubuntu
Netty vulnerabilities
2020-10-22 00:00:00
Netty vulnerabilities
2020-10-27 00:00:00
Netty vulnerabilities
2020-09-22 00:00:00
veracode
veracode
HTTP Request Smuggling
2020-01-31 06:26:41
HTTP Request Smuggling
2020-01-30 04:36:31
HTTP Request Smuggling
2020-01-31 00:35:33
prion
prion
Design/Logic Flaw
2020-01-29 21:15:00
Design/Logic Flaw
2020-01-29 21:15:00
Design/Logic Flaw
2020-01-27 17:15:00
nvd
nvd
debiancve
debiancve
f5
f5
K14752415 : Netty vulnerability CVE-2019-20444
2020-07-13 00:00:00
K75555129 : Netty vulnerabilities CVE-2019-16869 and CVE-2020-7238
2020-07-13 00:00:00
github
github
HTTP Request Smuggling in Netty
2020-02-21 18:55:24
HTTP Request Smuggling in Netty
2020-02-21 18:55:04
HTTP Request Smuggling in Netty
2020-02-21 18:55:50
cvelist
cvelist
cve
cve
ubuntucve
ubuntucve
redhatcve
redhatcve
freebsd
freebsd
cassandra3 -- multiple vulnerabilities
2023-01-11 00:00:00