{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2016-2141", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "dateUpdated": "2024-08-05T23:17:50.610Z", "dateReserved": "2016-01-29T00:00:00", "datePublished": "2016-06-30T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2023-04-26T00:00:00"}, "descriptions": [{"lang": "en", "value": "It was found that JGroups did not require necessary headers for encrypt and auth protocols from new nodes joining the cluster. An attacker could use this flaw to bypass security restrictions, and use this vulnerability to send and receive messages within the cluster, leading to information disclosure, message spoofing, or further possible attacks."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"name": "RHSA-2016:1347", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1347"}, {"name": "RHSA-2016:2035", "tags": ["vendor-advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2016-2035.html"}, {"name": "RHSA-2016:1389", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1389"}, {"name": "RHSA-2016:1345", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1345"}, {"name": "RHSA-2016:1376", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1376"}, {"name": "RHSA-2016:1330", "tags": ["vendor-advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1330.html"}, {"name": "RHSA-2016:1439", "tags": ["vendor-advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1439.html"}, {"name": "RHSA-2016:1331", "tags": ["vendor-advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1331.html"}, {"name": "91481", "tags": ["vdb-entry"], "url": "http://www.securityfocus.com/bid/91481"}, {"name": "RHSA-2016:1434", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1434"}, {"name": "RHSA-2016:1328", "tags": ["vendor-advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1328.html"}, {"name": "RHSA-2016:1433", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1433"}, {"url": "https://issues.jboss.org/browse/JGRP-2021"}, {"name": "RHSA-2016:1374", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1374"}, {"name": "RHSA-2016:1432", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1432"}, {"name": "RHSA-2016:1346", "tags": ["vendor-advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1346"}, {"name": "RHSA-2016:1334", "tags": ["vendor-advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1334.html"}, {"name": "RHSA-2016:1333", "tags": ["vendor-advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1333.html"}, {"name": "RHSA-2016:1329", "tags": ["vendor-advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1329.html"}, {"name": "RHSA-2016:1332", "tags": ["vendor-advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1332.html"}, {"name": "RHSA-2016:1435", "tags": ["vendor-advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1435.html"}, {"name": "1036165", "tags": ["vdb-entry"], "url": "http://www.securitytracker.com/id/1036165"}, {"url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"}, {"name": "[geode-dev] 20200407 JGroups vulnerabilty", "tags": ["mailing-list"], "url": "https://lists.apache.org/thread.html/ra18cac97416abc2958db0b107877c31da28d884fa6e70fd89c87384a%40%3Cdev.geode.apache.org%3E"}, {"name": "[geode-dev] 20200407 Re: JGroups vulnerabilty", "tags": ["mailing-list"], "url": "https://lists.apache.org/thread.html/rb37cc937d4fc026fb56de4b4ec0d054aa4083c1a4edd0d8360c068a0%40%3Cdev.geode.apache.org%3E"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}], "datePublic": "2016-06-23T00:00:00"}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T23:17:50.610Z"}, "title": "CVE Program Container", "references": [{"name": "RHSA-2016:1347", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2016:1347"}, {"name": "RHSA-2016:2035", "tags": ["vendor-advisory", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2016-2035.html"}, {"name": "RHSA-2016:1389", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2016:1389"}, {"name": "RHSA-2016:1345", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2016:1345"}, {"name": "RHSA-2016:1376", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2016:1376"}, {"name": "RHSA-2016:1330", "tags": ["vendor-advisory", "x_transferred"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1330.html"}, {"name": "RHSA-2016:1439", "tags": ["vendor-advisory", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1439.html"}, {"name": "RHSA-2016:1331", "tags": ["vendor-advisory", "x_transferred"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1331.html"}, {"name": "91481", "tags": ["vdb-entry", "x_transferred"], "url": "http://www.securityfocus.com/bid/91481"}, {"name": "RHSA-2016:1434", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2016:1434"}, {"name": "RHSA-2016:1328", "tags": ["vendor-advisory", "x_transferred"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1328.html"}, {"name": "RHSA-2016:1433", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2016:1433"}, {"url": "https://issues.jboss.org/browse/JGRP-2021", "tags": ["x_transferred"]}, {"name": "RHSA-2016:1374", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2016:1374"}, {"name": "RHSA-2016:1432", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2016:1432"}, {"name": "RHSA-2016:1346", "tags": ["vendor-advisory", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2016:1346"}, {"name": "RHSA-2016:1334", "tags": ["vendor-advisory", "x_transferred"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1334.html"}, {"name": "RHSA-2016:1333", "tags": ["vendor-advisory", "x_transferred"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1333.html"}, {"name": "RHSA-2016:1329", "tags": ["vendor-advisory", "x_transferred"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1329.html"}, {"name": "RHSA-2016:1332", "tags": ["vendor-advisory", "x_transferred"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1332.html"}, {"name": "RHSA-2016:1435", "tags": ["vendor-advisory", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1435.html"}, {"name": "1036165", "tags": ["vdb-entry", "x_transferred"], "url": "http://www.securitytracker.com/id/1036165"}, {"url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", "tags": ["x_transferred"]}, {"name": "[geode-dev] 20200407 JGroups vulnerabilty", "tags": ["mailing-list", "x_transferred"], "url": "https://lists.apache.org/thread.html/ra18cac97416abc2958db0b107877c31da28d884fa6e70fd89c87384a%40%3Cdev.geode.apache.org%3E"}, {"name": "[geode-dev] 20200407 Re: JGroups vulnerabilty", "tags": ["mailing-list", "x_transferred"], "url": "https://lists.apache.org/thread.html/rb37cc937d4fc026fb56de4b4ec0d054aa4083c1a4edd0d8360c068a0%40%3Cdev.geode.apache.org%3E"}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:jgroups:*:*:*:*:*:*:*:*", "matchCriteriaId": "EEEE3873-17F7-4E5D-9C19-1C1BE698A17E", "versionEndExcluding": "4.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "93F14D0A-4350-4141-B4C4-FBEBAAA4828D", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.4:*:*:*:*:*:*:*", "matchCriteriaId": "E2E0AFF9-F664-4D46-AEF4-07C725CC5448", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "88BF3B2C-B121-483A-AEF2-8082F6DA5310", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "1D8B549B-E57B-4DFE-8A13-CAB06B5356B3", "vulnerable": false}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC", "vulnerable": false}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "It was found that JGroups did not require necessary headers for encrypt and auth protocols from new nodes joining the cluster. An attacker could use this flaw to bypass security restrictions, and use this vulnerability to send and receive messages within the cluster, leading to information disclosure, message spoofing, or further possible attacks."}, {"lang": "es", "value": "JGroups en versiones anteriores a 4.0 no solicita las cabeceras adecuadas para los protocolos ENCRYPT y AUTH desde los nodos uni\u00e9ndose al grupo, lo que permite a atacantes remotos eludir las restricciones de seguridad y enviar y recibir mensajes dentro del grupo a trav\u00e9s de vectores no especificados."}], "id": "CVE-2016-2141", "lastModified": "2023-11-07T02:30:59.747", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-06-30T16:59:00.117", "references": [{"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1435.html"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1439.html"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2016-2035.html"}, {"source": "secalert@redhat.com", "tags": ["VDB Entry"], "url": "http://www.securityfocus.com/bid/91481"}, {"source": "secalert@redhat.com", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1036165"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1345"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1346"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1347"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1374"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1376"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1389"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1432"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1433"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://access.redhat.com/errata/RHSA-2016:1434"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://issues.jboss.org/browse/JGRP-2021"}, {"source": "secalert@redhat.com", "url": "https://lists.apache.org/thread.html/ra18cac97416abc2958db0b107877c31da28d884fa6e70fd89c87384a%40%3Cdev.geode.apache.org%3E"}, {"source": "secalert@redhat.com", "url": "https://lists.apache.org/thread.html/rb37cc937d4fc026fb56de4b4ec0d054aa4083c1a4edd0d8360c068a0%40%3Cdev.geode.apache.org%3E"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1328.html"}, {"source": "secalert@redhat.com", "tags": ["Broken Link", "Vendor Advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1329.html"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1330.html"}, {"source": "secalert@redhat.com", "tags": ["Broken Link", "Vendor Advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1331.html"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1332.html"}, {"source": "secalert@redhat.com", "tags": ["Broken Link", "Vendor Advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1333.html"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://rhn.redhat.com/errata/RHSA-2016-1334.html"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "This issue was discovered by Dennis Reed (Red Hat).", "affected_release": [{"advisory": "RHSA-2016:1345", "cpe": "cpe:/a:redhat:jboss_enterprise_brms_platform:5.3", "package": "Clustering", "product_name": "JBoss Enterprise BRMS Platform 5.3", "release_date": "2016-06-27T00:00:00Z"}, {"advisory": "RHSA-2016:1345", "cpe": "cpe:/a:redhat:jboss_enterprise_brms_platform:6.3", "package": "Clustering", "product_name": "Red Hat JBoss BRMS 6.3", "release_date": "2016-06-27T00:00:00Z"}, {"advisory": "RHSA-2016:1347", "cpe": "cpe:/a:redhat:jboss_enterprise_brms_platform:6.3", "package": "Clustering", "product_name": "Red Hat JBoss BRMS 6.3", "release_date": "2016-06-27T00:00:00Z"}, {"advisory": "RHSA-2016:1334", "cpe": "cpe:/a:redhat:jboss_data_grid:6.6", "package": "JGroups", "product_name": "Red Hat JBoss Data Grid 6.6", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1346", "cpe": "cpe:/a:redhat:jboss_data_virtualization:6.2", "package": "Clustering", "product_name": "Red Hat JBoss Data Virtualization 6.2", "release_date": "2016-06-27T00:00:00Z"}, {"advisory": "RHSA-2016:1333", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.0", "product_name": "Red Hat JBoss EAP 7.0", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1329", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5.2", "product_name": "Red Hat JBoss Enterprise Application Platform 5.2", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1328", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5::el4", "package": "jgroups-1:2.6.22-2.ep5.el4", "product_name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 4", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1328", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5::el5", "package": "jgroups-1:2.6.22-2.ep5.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 5", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1328", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5::el6", "package": "jgroups-1:2.6.22-2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 6", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1331", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6.4", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1435", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6.4", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1330", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jgroups-1:3.2.16-1.Final_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 5", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1330", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jgroups-1:3.2.16-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1432", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-ec2-eap-0:7.5.9-2.Final_redhat_2.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "apache-cxf-0:2.7.18-2.SP1_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "glassfish-jsf-eap6-0:2.1.28-11.SP10_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "hibernate4-validator-0:4.3.3-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "hornetq-0:2.3.25-13.SP11_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-appclient-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-appclient-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-bundles-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-cli-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-client-all-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-clustering-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-cmp-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-configadmin-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-connector-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-controller-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-controller-client-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-core-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-core-security-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-deployment-repository-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-deployment-scanner-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-domain-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-domain-http-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-domain-management-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-ee-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-ee-deployment-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-ejb3-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-embedded-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-host-controller-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jacorb-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-javadocs-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jaxr-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jaxrs-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jdr-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jmx-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jpa-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jsf-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jsr77-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-logging-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-mail-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-management-client-content-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-messaging-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-modcluster-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-modules-eap-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-naming-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-network-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-osgi-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-osgi-configadmin-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-osgi-service-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-picketlink-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-platform-mbean-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-pojo-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-process-controller-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-product-eap-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-protocol-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-remoting-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-sar-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-security-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-server-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-standalone-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-system-jmx-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-threads-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-transactions-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-version-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-web-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-webservices-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-welcome-content-eap-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-weld-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-xts-0:7.5.9-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-jsf-api_2.1_spec-0:2.1.28-6.SP2_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-msc-0:1.1.6-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossts-1:4.17.34-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossweb-0:7.5.17-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "picketlink-bindings-0:2.5.4-11.SP9_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "picketlink-federation-0:2.5.4-11.SP9_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1433", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "xalan-j2-eap6-0:2.7.1-11.redhat_11.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1330", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jgroups-1:3.2.16-1.Final_redhat_1.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "apache-cxf-0:2.7.18-2.SP1_redhat_1.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "glassfish-jsf-eap6-0:2.1.28-11.SP10_redhat_1.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "hibernate4-validator-0:4.3.3-1.Final_redhat_1.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "hornetq-0:2.3.25-13.SP11_redhat_1.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-appclient-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossas-appclient-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossas-bundles-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-cli-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-client-all-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-clustering-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-cmp-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-configadmin-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-connector-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-controller-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-controller-client-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossas-core-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-core-security-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-deployment-repository-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-deployment-scanner-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossas-domain-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-domain-http-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-domain-management-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-ee-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-ee-deployment-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-ejb3-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-embedded-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-host-controller-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-jacorb-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossas-javadocs-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-jaxr-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-jaxrs-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-jdr-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-jmx-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-jpa-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-jsf-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-jsr77-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-logging-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-mail-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-management-client-content-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-messaging-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-modcluster-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossas-modules-eap-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-naming-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-network-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-osgi-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-osgi-configadmin-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-osgi-service-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-picketlink-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-platform-mbean-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-pojo-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-process-controller-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossas-product-eap-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-protocol-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-remoting-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-sar-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-security-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-server-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossas-standalone-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-system-jmx-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-threads-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-transactions-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-version-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-web-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-webservices-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossas-welcome-content-eap-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-weld-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-as-xts-0:7.5.9-2.Final_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-jsf-api_2.1_spec-0:2.1.28-6.SP2_redhat_1.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jboss-msc-0:1.1.6-1.Final_redhat_1.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossts-1:4.17.34-1.Final_redhat_1.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "jbossweb-0:7.5.17-1.Final_redhat_1.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "picketlink-bindings-0:2.5.4-11.SP9_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "picketlink-federation-0:2.5.4-11.SP9_redhat_2.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1434", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el7", "package": "xalan-j2-eap6-0:2.7.1-11.redhat_11.1.ep6.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7", "release_date": "2016-07-18T00:00:00Z"}, {"advisory": "RHSA-2016:1332", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7::el6", "package": "eap7-jgroups-0:3.6.8-3.Final_redhat_3.1.ep7.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 7.0 for RHEL 6", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:1332", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7::el7", "package": "eap7-jgroups-0:3.6.8-3.Final_redhat_3.1.ep7.el7", "product_name": "Red Hat JBoss Enterprise Application Platform 7.0 for RHEL 7", "release_date": "2016-06-23T00:00:00Z"}, {"advisory": "RHSA-2016:2035", "cpe": "cpe:/a:redhat:jboss_fuse:6.3", "product_name": "Red Hat JBoss Fuse 6.3", "release_date": "2016-10-06T00:00:00Z"}, {"advisory": "RHSA-2016:1389", "cpe": "cpe:/a:redhat:jboss_fuse_service_works:6.0", "package": "Clustering", "product_name": "Red Hat JBoss Fuse Service Works 6.0", "release_date": "2016-07-07T00:00:00Z"}, {"advisory": "RHSA-2016:1374", "cpe": "cpe:/a:redhat:jboss_enterprise_portal_platform:6.2", "package": "Clustering", "product_name": "Red Hat JBoss Portal 6.2", "release_date": "2016-06-29T00:00:00Z"}, {"advisory": "RHSA-2016:1376", "cpe": "cpe:/a:redhat:jboss_enterprise_soa_platform:5.3", "package": "Clustering", "product_name": "Red Hat JBoss SOA Platform 5.3", "release_date": "2016-06-30T00:00:00Z"}, {"advisory": "RHSA-2016:1439", "cpe": "cpe:/a:redhat:jboss_single_sign_on:7.0", "product_name": "Red Hat Single Sign-On 7.0", "release_date": "2016-07-19T00:00:00Z"}], "bugzilla": {"description": "JGroups: Authorization bypass", "id": "1313589", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1313589"}, "csaw": true, "cvss": {"cvss_base_score": "7.5", "cvss_scoring_vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "status": "verified"}, "cvss3": {"cvss3_base_score": "9.8", "cvss3_scoring_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "status": "verified"}, "details": ["It was found that JGroups did not require necessary headers for encrypt and auth protocols from new nodes joining the cluster. An attacker could use this flaw to bypass security restrictions, and use this vulnerability to send and receive messages within the cluster, leading to information disclosure, message spoofing, or further possible attacks.", "It was found that JGroups did not require necessary headers for encrypt and auth protocols from new nodes joining the cluster. An attacker could use this flaw to bypass security restrictions, and use this vulnerability to send and receive messages within the cluster, leading to information disclosure, message spoofing, or further possible attacks."], "mitigation": {"lang": "en:us", "value": "Please refer to https://access.redhat.com/articles/2360521 for more information."}, "name": "CVE-2016-2141", "package_state": [{"cpe": "cpe:/a:redhat:amq_broker:7", "fix_state": "Not affected", "package_name": "JGroups", "product_name": "Red Hat AMQ Broker 7"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_bpms_platform:6", "fix_state": "Affected", "package_name": "Clustering", "product_name": "Red Hat BPM Suite 6"}, {"cpe": "cpe:/a:redhat:enterprise_linux:7::hypervisor", "fix_state": "Not affected", "package_name": "distribution", "product_name": "Red Hat Enterprise Virtualization 3"}, {"cpe": "cpe:/a:redhat:jboss_fuse:7", "fix_state": "Not affected", "package_name": "camel", "product_name": "Red Hat Fuse 7"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_brms_platform:6", "fix_state": "Affected", "package_name": "Clustering", "product_name": "Red Hat JBoss BRMS 6"}, {"cpe": "cpe:/a:redhat:jboss_fuse:6", "fix_state": "Affected", "impact": "moderate", "package_name": "camel", "product_name": "Red Hat JBoss Fuse 6"}, {"cpe": "cpe:/a:redhat:red_hat_single_sign_on:7", "fix_state": "Affected", "package_name": "Clustering", "product_name": "Red Hat Single Sign-On 7"}], "public_date": "2016-06-23T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2016-2141\nhttps://nvd.nist.gov/vuln/detail/CVE-2016-2141"], "threat_severity": "Critical", "upstream_fix": "jgroups 3.6.10.Final"}