The following Red Hat Security Advisory has been published which may affect subscriptions which you have purchased.
RHSA-2018:2700 Important: Red Hat JBoss Web Server 3.1.0 Service Pack 5 security and bug fix update
An update is now available for Red Hat JBoss Web Server 3.1.
Red Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector (mod_jk), JBoss HTTP Connector (mod_cluster), Hibernate, and the Tomcat Native library.
This release of Red Hat JBoss Web Server 3.1 Service Pack 5 serves as a replacement for Red Hat JBoss Web Server 3.1, and includes bug fixes, which are documented in the Release Notes document linked to in the References.
* tomcat: A bug in the UTF-8 decoder can lead to DoS (CVE-2018-1336)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Full details and references:
本站大部分下载资源收集于网络，只做学习和交流使用，版权归原作者所有。 若您需要使用非免费的软件或服务，请购买正版授权并合法使用。 本站发布的内容若侵犯到您的权益，请联系站长删除，我们将及时处理。