RHSA-2018:1322MediumCVSS 7.8

Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R7 security and bug fix update

Published
May 3, 2018
Last Modified
June 30, 2026

🔗 CVE IDs covered (5)

📋 Description

CVE-2016-8750 — karaf: LDAP injection in LDAPLoginModule CVE-2017-7559 — undertow: HTTP Request smuggling vulnerability (incomplete fix of CVE-2017-2666) CVE-2017-12165 — undertow: improper whitespace parsing leading to potential HTTP request smuggling CVE-2017-12626 — poi: Parsing of multiple file types can cause a denial of service via infinite loop or out of memory exception CVE-2017-1000487 — plexus-utils: Mishandled strings in Commandline class allow for command injection

🔗 References (11)