{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-06-25T00:00:00", "descriptions": [{"lang": "en", "value": "jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.5 allows context-dependent attackers to spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrary weak \"canonicalization algorithm to apply to the SignedInfo part of the Signature.\""}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-09-17T10:06:19", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "RHSA-2013:1219", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1219.html"}, {"name": "54019", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/54019"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html"}, {"name": "RHSA-2013:1218", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1218.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://santuario.apache.org/secadv.data/CVE-2013-2172.txt.asc"}, {"name": "RHSA-2013:1209", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1209.html"}, {"name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"}, {"name": "USN-2028-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/USN-2028-1"}, {"name": "RHSA-2013:1217", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1217.html"}, {"name": "RHSA-2013:1437", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1437.html"}, {"tags": ["x_refsource_MISC"], "url": "http://svn.apache.org/viewvc/santuario/xml-security-java/branches/1.5.x-fixes/src/main/java/org/apache/jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java?r1=1353876&r2=1493772&pathrev=1493772&diff_format=h"}, {"name": "RHSA-2013:1207", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1207.html"}, {"name": "RHSA-2013:1375", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1375.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"}, {"name": "RHSA-2014:0212", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0212.html"}, {"name": "RHSA-2013:1853", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1853.html"}, {"name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://seclists.org/fulldisclosure/2014/Dec/23"}, {"name": "RHSA-2013:1208", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1208.html"}, {"name": "RHSA-2013:1220", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1220.html"}, {"name": "60846", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/60846"}, {"name": "94651", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/94651"}, {"name": "DSA-3065", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2014/dsa-3065"}, {"name": "[santuario-commits] 20190823 svn commit: r1049214 - in /websites/production/santuario/content: cache/main.pageCache download.html index.html javaindex.html javareleasenotes.html secadv.data/CVE-2019-12400.asc secadv.html", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.apache.org/thread.html/680e6938b6412e26d5446054fd31de2011d33af11786b989127d1cc3%40%3Ccommits.santuario.apache.org%3E"}, {"name": "[santuario-commits] 20210917 svn commit: r1076843 - in /websites/production/santuario/content: cache/main.pageCache index.html javaindex.html secadv.data/CVE-2021-40690.txt.asc secadv.html", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.apache.org/thread.html/r1c07a561426ec5579073046ad7f4207cdcef452bb3100abaf908e0cd%40%3Ccommits.santuario.apache.org%3E"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T15:27:41.140Z"}, "title": "CVE Program Container", "references": [{"name": "RHSA-2013:1219", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1219.html"}, {"name": "54019", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/54019"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html"}, {"name": "RHSA-2013:1218", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1218.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://santuario.apache.org/secadv.data/CVE-2013-2172.txt.asc"}, {"name": "RHSA-2013:1209", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1209.html"}, {"name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"}, {"name": "USN-2028-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "http://www.ubuntu.com/usn/USN-2028-1"}, {"name": "RHSA-2013:1217", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1217.html"}, {"name": "RHSA-2013:1437", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1437.html"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://svn.apache.org/viewvc/santuario/xml-security-java/branches/1.5.x-fixes/src/main/java/org/apache/jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java?r1=1353876&r2=1493772&pathrev=1493772&diff_format=h"}, {"name": "RHSA-2013:1207", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1207.html"}, {"name": "RHSA-2013:1375", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1375.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"}, {"name": "RHSA-2014:0212", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0212.html"}, {"name": "RHSA-2013:1853", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1853.html"}, {"name": "20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://seclists.org/fulldisclosure/2014/Dec/23"}, {"name": "RHSA-2013:1208", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1208.html"}, {"name": "RHSA-2013:1220", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-1220.html"}, {"name": "60846", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/60846"}, {"name": "94651", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/94651"}, {"name": "DSA-3065", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2014/dsa-3065"}, {"name": "[santuario-commits] 20190823 svn commit: r1049214 - in /websites/production/santuario/content: cache/main.pageCache download.html index.html javaindex.html javareleasenotes.html secadv.data/CVE-2019-12400.asc secadv.html", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.apache.org/thread.html/680e6938b6412e26d5446054fd31de2011d33af11786b989127d1cc3%40%3Ccommits.santuario.apache.org%3E"}, {"name": "[santuario-commits] 20210917 svn commit: r1076843 - in /websites/production/santuario/content: cache/main.pageCache index.html javaindex.html secadv.data/CVE-2021-40690.txt.asc secadv.html", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.apache.org/thread.html/r1c07a561426ec5579073046ad7f4207cdcef452bb3100abaf908e0cd%40%3Ccommits.santuario.apache.org%3E"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2013-2172", "datePublished": "2013-08-20T22:00:00", "dateReserved": "2013-02-19T00:00:00", "dateUpdated": "2024-08-06T15:27:41.140Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:santuario_xml_security_for_java:1.4.7:*:*:*:*:*:*:*", "matchCriteriaId": "3DB7492B-1D95-48D0-9892-C8A47FD15414", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:santuario_xml_security_for_java:1.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "7D8837A5-0840-44D3-BD7D-335611BDF64D", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:santuario_xml_security_for_java:1.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "FD0057FF-4F75-4F35-BD15-1093D22AFE04", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:santuario_xml_security_for_java:1.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "C65E4B50-5F5C-4F04-8CF8-4D1CCA2BF427", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:santuario_xml_security_for_java:1.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "5889CDAF-4F5A-42D9-A6CE-7F7A4222ECB4", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:santuario_xml_security_for_java:1.5.4:*:*:*:*:*:*:*", "matchCriteriaId": "EDD00EBA-1B65-4245-9A3D-D389830450BB", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.5 allows context-dependent attackers to spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrary weak \"canonicalization algorithm to apply to the SignedInfo part of the Signature.\""}, {"lang": "es", "value": "jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java en Apache Santuario XML Security para Java 1.4.x anterior a 1.4.8 y 1.5.x anterior a 1.5.5 , permite a atacantes dependientes del contexto suplantar una firma XML utilizando el par\u00e1metro \"CanonicalizationMethod\" para especificar la debilidad arbitraria: \"canonizaci\u00f3n del algoritmo a aplicar para la parte SignedInfo de la firma\"."}], "id": "CVE-2013-2172", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-08-20T22:55:04.093", "references": [{"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-1207.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-1208.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-1209.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-1217.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-1218.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-1219.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-1220.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-1375.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-1437.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-1853.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2014-0212.html"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://santuario.apache.org/secadv.data/CVE-2013-2172.txt.asc"}, {"source": "secalert@redhat.com", "url": "http://seclists.org/fulldisclosure/2014/Dec/23"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/54019"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://svn.apache.org/viewvc/santuario/xml-security-java/branches/1.5.x-fixes/src/main/java/org/apache/jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java?r1=1353876&r2=1493772&pathrev=1493772&diff_format=h"}, {"source": "secalert@redhat.com", "url": "http://www.debian.org/security/2014/dsa-3065"}, {"source": "secalert@redhat.com", "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"}, {"source": "secalert@redhat.com", "url": "http://www.osvdb.org/94651"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/60846"}, {"source": "secalert@redhat.com", "url": "http://www.ubuntu.com/usn/USN-2028-1"}, {"source": "secalert@redhat.com", "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html"}, {"source": "secalert@redhat.com", "url": "https://lists.apache.org/thread.html/680e6938b6412e26d5446054fd31de2011d33af11786b989127d1cc3%40%3Ccommits.santuario.apache.org%3E"}, {"source": "secalert@redhat.com", "url": "https://lists.apache.org/thread.html/r1c07a561426ec5579073046ad7f4207cdcef452bb3100abaf908e0cd%40%3Ccommits.santuario.apache.org%3E"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-1207.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-1208.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-1209.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-1217.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-1218.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-1219.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-1220.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-1375.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-1437.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-1853.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2014-0212.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://santuario.apache.org/secadv.data/CVE-2013-2172.txt.asc"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://seclists.org/fulldisclosure/2014/Dec/23"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/54019"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://svn.apache.org/viewvc/santuario/xml-security-java/branches/1.5.x-fixes/src/main/java/org/apache/jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java?r1=1353876&r2=1493772&pathrev=1493772&diff_format=h"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.debian.org/security/2014/dsa-3065"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/94651"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/60846"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.ubuntu.com/usn/USN-2028-1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.apache.org/thread.html/680e6938b6412e26d5446054fd31de2011d33af11786b989127d1cc3%40%3Ccommits.santuario.apache.org%3E"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.apache.org/thread.html/r1c07a561426ec5579073046ad7f4207cdcef452bb3100abaf908e0cd%40%3Ccommits.santuario.apache.org%3E"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-310"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2014:1369", "cpe": "cpe:/a:redhat:fuse_esb_enterprise:7.1.0", "product_name": "Fuse ESB Enterprise 7.1.0", "release_date": "2014-10-09T00:00:00Z"}, {"advisory": "RHSA-2014:1369", "cpe": "cpe:/a:redhat:fuse_management_console:7.1.0", "product_name": "Fuse Management Console 7.1.0", "release_date": "2014-10-09T00:00:00Z"}, {"advisory": "RHSA-2014:1369", "cpe": "cpe:/a:redhat:fuse_mq_enterprise:7.1.0", "product_name": "Fuse MQ Enterprise 7.1.0", "release_date": "2014-10-09T00:00:00Z"}, {"advisory": "RHSA-2013:1219", "cpe": "cpe:/a:redhat:jboss_enterprise_web_platform:5::el5", "package": "xml-security-0:1.5.1-3_patch01.ep5.el5", "product_name": "JBEWP 5 for RHEL 5", "release_date": "2013-09-09T00:00:00Z"}, {"advisory": "RHSA-2013:1219", "cpe": "cpe:/a:redhat:jboss_enterprise_web_platform:5::el6", "package": "xml-security-0:1.5.1-3_patch01.ep5.el6", "product_name": "JBEWP 5 for RHEL 6", "release_date": "2013-09-09T00:00:00Z"}, {"advisory": "RHSA-2013:1375", "cpe": "cpe:/a:redhat:jboss_enterprise_brms_platform:5.3", "package": "xmlsec", "product_name": "JBoss Enterprise BRMS Platform 5.3", "release_date": "2013-09-30T00:00:00Z"}, {"advisory": "RHSA-2013:1218", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5.2.0", "product_name": "Red Hat JBoss Enterprise Application Platform 5.2", "release_date": "2013-09-09T00:00:00Z"}, {"advisory": "RHSA-2013:1217", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5::el4", "package": "xml-security-0:1.5.1-3_patch01.ep5.el4", "product_name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 4", "release_date": "2013-09-09T00:00:00Z"}, {"advisory": "RHSA-2013:1217", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5::el5", "package": "xml-security-0:1.5.1-3_patch01.ep5.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 5", "release_date": "2013-09-09T00:00:00Z"}, {"advisory": "RHSA-2013:1217", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5::el6", "package": "xml-security-0:1.5.1-3_patch01.ep5.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 6", "release_date": "2013-09-09T00:00:00Z"}, {"advisory": "RHSA-2013:1209", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6.1.1", "package": "xmlsec", "product_name": "Red Hat JBoss Enterprise Application Platform 6.1", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "apache-commons-beanutils-0:1.8.3-12.redhat_3.2.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "apache-commons-daemon-jsvc-eap6-1:1.0.15-2.redhat_2.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "apache-cxf-0:2.6.8-8.redhat_7.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "apache-cxf-xjc-utils-0:2.6.0-2.redhat_4.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "hibernate4-0:4.2.0-11.SP1_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "hornetq-0:2.3.5-2.Final_redhat_2.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "hornetq-native-0:2.3.5-1.Final_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "httpd-0:2.2.22-25.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "infinispan-0:5.2.7-1.Final_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "ironjacamar-0:1.0.19-1.Final_redhat_2.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jaxbintros-0:1.0.2-16.GA_redhat_6.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-aesh-0:0.33.7-2.redhat_2.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-appclient-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-appclient-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-bundles-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-cli-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-client-all-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-clustering-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-cmp-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-configadmin-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-connector-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-console-0:1.5.6-2.Final_redhat_2.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-controller-client-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-core-0:7.2.1-6.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-deployment-repository-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-deployment-scanner-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-domain-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-domain-http-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-domain-management-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-ee-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-ee-deployment-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-ejb3-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-embedded-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-host-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jacorb-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-javadocs-0:7.2.1-2.Final_redhat_10.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jaxr-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jaxrs-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jdr-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jmx-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jpa-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jsf-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jsr77-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-logging-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-mail-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-management-client-content-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-messaging-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-modcluster-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-modules-eap-0:7.2.1-9.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-naming-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-network-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-osgi-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-osgi-configadmin-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-osgi-service-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-platform-mbean-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-pojo-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-process-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-product-eap-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-protocol-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-remoting-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-sar-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-security-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-server-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-standalone-0:7.2.1-6.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-system-jmx-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-threads-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-transactions-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-version-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-web-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-webservices-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-welcome-content-eap-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-weld-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-xts-0:7.2.1-5.Final_redhat_10.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-ejb-client-0:1.0.23-1.Final_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-hal-0:1.5.7-1.Final_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-invocation-0:1.1.2-1.Final_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-jsp-api_2.2_spec-0:1.0.1-6.Final_redhat_2.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-logmanager-0:1.4.3-1.Final_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-marshalling-0:1.3.18-2.GA_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-modules-0:1.2.2-1.Final_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-remote-naming-0:1.0.7-1.Final_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-security-negotiation-0:2.2.5-2.Final_redhat_2.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-stdio-0:1.0.2-1.GA_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossts-1:4.17.7-4.Final_redhat_4.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossweb-0:7.2.2-1.Final_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossws-common-0:2.1.3-1.Final_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossws-cxf-0:4.1.4-7.Final_redhat_7.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossws-spi-0:2.1.3-1.Final_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jcip-annotations-eap6-0:1.0-4.redhat_4.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jgroups-1:3.2.10-1.Final_redhat_2.2.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "log4j-jboss-logmanager-0:1.0.2-1.Final_redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "netty-0:3.6.6-3.Final_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "opensaml-0:2.5.1-2.redhat_2.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "openws-0:1.4.2-10.redhat_4.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "picketbox-0:4.0.17-3.SP2_redhat_2.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "picketlink-federation-0:2.1.6.3-2.Final_redhat_2.2.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "wss4j-0:1.6.10-1.redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1207", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "xml-security-0:1.5.5-1.redhat_1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 5", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "apache-commons-beanutils-0:1.8.3-12.redhat_3.2.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "apache-commons-daemon-jsvc-eap6-1:1.0.15-2.redhat_2.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "apache-cxf-0:2.6.8-8.redhat_7.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "apache-cxf-xjc-utils-0:2.6.0-2.redhat_4.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "hibernate4-0:4.2.0-7.SP1_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "hornetq-0:2.3.5-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "hornetq-native-0:2.3.5-1.Final_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "httpd-0:2.2.22-25.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "infinispan-0:5.2.7-1.Final_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "ironjacamar-0:1.0.19-1.Final_redhat_2.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jaxbintros-0:1.0.2-16.GA_redhat_6.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-aesh-0:0.33.7-2.redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-appclient-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-appclient-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-bundles-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-cli-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-client-all-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-clustering-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-cmp-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-configadmin-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-connector-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-console-0:1.5.6-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-controller-client-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-core-0:7.2.1-6.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-deployment-repository-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-deployment-scanner-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-domain-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-domain-http-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-domain-management-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-ee-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-ee-deployment-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-ejb3-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-embedded-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-host-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jacorb-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-javadocs-0:7.2.1-2.Final_redhat_10.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jaxr-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jaxrs-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jdr-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jmx-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jpa-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jsf-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jsr77-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-logging-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-mail-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-management-client-content-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-messaging-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-modcluster-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-modules-eap-0:7.2.1-9.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-naming-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-network-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-osgi-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-osgi-configadmin-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-osgi-service-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-platform-mbean-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-pojo-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-process-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-product-eap-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-protocol-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-remoting-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-sar-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-security-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-server-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-standalone-0:7.2.1-6.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-system-jmx-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-threads-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-transactions-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-version-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-web-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-webservices-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-welcome-content-eap-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-weld-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-xts-0:7.2.1-5.Final_redhat_10.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-ejb-client-0:1.0.23-1.Final_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-hal-0:1.5.7-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-invocation-0:1.1.2-1.Final_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-jsp-api_2.2_spec-0:1.0.1-6.Final_redhat_2.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-logmanager-0:1.4.3-1.Final_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-marshalling-0:1.3.18-1.GA_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-modules-0:1.2.2-1.Final_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-remote-naming-0:1.0.7-1.Final_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-security-negotiation-0:2.2.5-2.Final_redhat_2.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-stdio-0:1.0.2-1.GA_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossts-1:4.17.7-4.Final_redhat_4.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossweb-0:7.2.2-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossws-common-0:2.1.3-1.Final_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossws-cxf-0:4.1.4-7.Final_redhat_7.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossws-spi-0:2.1.3-1.Final_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jcip-annotations-eap6-0:1.0-4.redhat_4.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jgroups-1:3.2.10-1.Final_redhat_2.2.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "log4j-jboss-logmanager-0:1.0.2-1.Final_redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "netty-0:3.6.6-2.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "opensaml-0:2.5.1-2.redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "openws-0:1.4.2-10.redhat_4.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "picketbox-0:4.0.17-3.SP2_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "picketlink-federation-0:2.1.6.3-2.Final_redhat_2.2.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "wss4j-0:1.6.10-1.redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2013:1208", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "xml-security-0:1.5.5-1.redhat_1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6 for RHEL 6", "release_date": "2013-09-04T00:00:00Z"}, {"advisory": "RHSA-2014:0400", "cpe": "cpe:/a:redhat:jboss_fuse:6.1.0", "product_name": "Red Hat JBoss Fuse 6.1", "release_date": "2014-04-14T00:00:00Z"}, {"advisory": "RHSA-2013:1853", "cpe": "cpe:/a:redhat:jboss_operations_network:3.2.0", "product_name": "Red Hat JBoss Operations Network 3.2", "release_date": "2013-12-17T00:00:00Z"}, {"advisory": "RHSA-2013:1437", "cpe": "cpe:/a:redhat:jboss_enterprise_portal_platform:6.1.0", "package": "xmlsec", "product_name": "Red Hat JBoss Portal Platform 6.1", "release_date": "2013-10-16T00:00:00Z"}, {"advisory": "RHSA-2014:0212", "cpe": "cpe:/a:redhat:jboss_enterprise_soa_platform:5.3", "package": "xmlsec", "product_name": "Red Hat JBoss SOA Platform 5.3", "release_date": "2014-02-25T00:00:00Z"}, {"advisory": "RHSA-2013:1220", "cpe": "cpe:/a:redhat:jboss_enterprise_web_platform:5.2.0", "product_name": "Red Hat JBoss Web Platform 5.2", "release_date": "2013-09-09T00:00:00Z"}], "bugzilla": {"description": "Java: XML signature spoofing", "id": "999263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=999263"}, "csaw": false, "cvss": {"cvss_base_score": "5.8", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "status": "verified"}, "cwe": "CWE-290", "details": ["jcp/xml/dsig/internal/dom/DOMCanonicalizationMethod.java in Apache Santuario XML Security for Java 1.4.x before 1.4.8 and 1.5.x before 1.5.5 allows context-dependent attackers to spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrary weak \"canonicalization algorithm to apply to the SignedInfo part of the Signature.\"", "A flaw was found in the way Apache Santuario XML Security for Java validated XML signatures. Santuario allowed a signature to specify an arbitrary canonicalization algorithm, which would be applied to the SignedInfo XML fragment. A remote attacker could exploit this to spoof an XML signature via a specially crafted XML signature block."], "name": "CVE-2013-2172", "package_state": [{"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:4", "fix_state": "Will not fix", "package_name": "xmlsec", "product_name": "Red Hat JBoss Enterprise Application Platform 4"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1", "fix_state": "Affected", "package_name": "fuse-6", "product_name": "Red Hat JBoss Enterprise Web Server 1"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1", "fix_state": "Affected", "package_name": "fuse-enterprise-esb-7", "product_name": "Red Hat JBoss Enterprise Web Server 1"}, {"cpe": "cpe:/a:redhat:jboss_operations_network:3.1", "fix_state": "Affected", "package_name": "xmlsec", "product_name": "Red Hat JBoss Operations Network 3.1"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_portal_platform:4", "fix_state": "Will not fix", "package_name": "xmlsec", "product_name": "Red Hat JBoss Portal 4"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_portal_platform:5", "fix_state": "Will not fix", "package_name": "xmlsec", "product_name": "Red Hat JBoss Portal 5"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_soa_platform:4.2", "fix_state": "Will not fix", "package_name": "xmlsec", "product_name": "Red Hat JBoss SOA Platform 4.2"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_soa_platform:4.3", "fix_state": "Will not fix", "package_name": "xmlsec", "product_name": "Red Hat JBoss SOA Platform 4.3"}], "public_date": "2013-06-25T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2013-2172\nhttps://nvd.nist.gov/vuln/detail/CVE-2013-2172\nhttp://santuario.apache.org/secadv.data/CVE-2013-2172.txt.asc"], "threat_severity": "Moderate"}

{}