RHSA-2017:2708HighCVSS 7.5

Red Hat Security Advisory: Red Hat JBoss Core Services security update

Published
September 13, 2017
Last Modified
May 29, 2026

🔗 CVE IDs covered (3)

CVE-2015-3185CVE-2016-2183CVE-2017-9788

📋 Description

CVE-2015-3185 — httpd: ap_some_auth_required() does not properly indicate authenticated request in 2.4 CVE-2016-2183 — SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32) CVE-2017-9788 — httpd: Uninitialized memory reflection in mod_auth_digest

🔗 References (9)