(RHSA-2020:0606) Important: Red Hat JBoss Enterprise Application Platform 7.2 security update

2020-02-25T22:21:05
ID RHSA-2020:0606
Type redhat
Reporter RedHat
Modified 2020-02-26T15:40:26

Description

Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.

This asynchronous patch is a security update for the wildfly-security-manager package in Red Hat JBoss Enterprise Application Platform 7.2.

Security Fix(es):

  • netty: HTTP Request Smuggling due to Transfer-Encoding whitespace mishandling (CVE-2020-7238)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, see the CVE page(s) listed in the References section.