close
close

Solondais

Where news breaks first, every time

    • Red Hat JBoss Enterprise Support Platform: Multiple Denial of Service Issues Occur
    sinolod

    Red Hat JBoss Enterprise Support Platform: Multiple Denial of Service Issues Occur

    Mars Posted on

    An extension platform for Red Hat JBoss Enterprise provides additional security information for BSI in an update. A description of the security service including the latest updates as well as information on improved management systems and products can be read here.

    The Bundesamt for Security On 10/13/2024, an update on 09/23/2024 resulted in a security message for the Red Hat JBoss Enterprise Support Platform. The security offering is the Linux operating system that offers Red Hat Enterprise Linux and Red Hat JBoss Enterprise Application Platform products.

    New Security Solutions provides updates, workarounds, and security patches for these security solutions which you can find here: Red Hat Security Advisory RHSA-2024:8023 (Booth: 14.10.2024). Please note that we do not have any other articles in these articles.

    Security for Red Hat JBoss Enterprise Support Platform – Risk: Medium

    Risk level: 3 (medium)
    CVSS Base Score: 5.3
    CVSS Temporal Score: 4.6
    Ranged Claw: Ja

    For the integration of IT systems, the Common Vulnerability Scoring System (CVSS) is proposed. The CVSS standard has the potential to provide security services based on benchmarks to define the best priorities for use. For the Schweregrade, a Schwachstelle werden die Attribute “keine”, “niedrig”, “mittel”, “hoch” and “kritisch” used. The base score corresponds to preferences for an attribute (authentication, complexity, privileges, user interaction) as well as sequences of sequences. Beim Temporal Score flies on the Zeit veränderbare Rahmenbedingungen in die Bewertung ein. La Schweregrad der hier behandelten Schwachstelle wird nach dem CVSS mit a Base Score von 5.3 als “mittel” eingestuft.

    Red Hat JBoss Enterprise Support Platform Bug: Multiple Denial of Service Issues Occur

    JBoss Enterprise Application Platform is a scalable platform for Java applications, including JBoss Application Server, JBoss Hibernate, and Boss Seam.

    An anonymous attacker may have more efforts in Red Hat JBoss Enterprise Application Platform to avoid a denial of service.

    Classified classes relate to typical methods of CVE (common vulnerabilities and exposures) monitoring systems by individual serial numbers CVE-2024-3653 and CVE-2024-8391.

    Access to security is through the system on display

    Matching system
    Linux

    Product
    Red Hat Enterprise Linux (cpe://o:redhat:enterprise_linux)
    Red Hat JBoss Enterprise Application Platform 7.1.0 (cpe:/a:redhat:jboss_enterprise_application_platform)
    Red Hat JBoss Enterprise Application Platform 7.4 (cpe:/a:redhat:jboss_enterprise_application_platform)
    Red Hat JBoss Enterprise Application Platform 8 (cpe:/a:redhat:jboss_enterprise_application_platform)
    Red Hat JBoss Enterprise Application Platform Quarkus Red Hat JBoss Enterprise Application Platform Quarkus 3.8.6 (cpe:/a:redhat:jboss_enterprise_application_platform)

    Allgemeine Maßnahmen zumgang mit IT-Sicherheitslücken

    1. Anwender der betroffenen Anwendungen sollten diese auf dem actuellsten Stand halten. Vendors are security solutions that can be used to install a patch or workaround. Sollten new Sicherheitsupdates verfügbar sein, installieren Sie ce zeitnah.
    2. Consult the available information as soon as possible aufgeführten Quellen. You will find this very detailed information on the current version of the optimized software as well as checking for security patches or instructions on workarounds.
    3. Wenden Sie sich bei weiteren Fragen ou Unsicherheiten an Ihren zuständigen Administrator. The IT security department ensures that the IT control system generates a new security update, as well as a new security update.

    Information about updates, fixes, and workarounds

    This step allows you to find many links with information about bug reports, security fixes, and workarounds.

    Red Hat Security Advisory RHSA-2024:8023 dated 2024-10-14 (13.10.2024)
    You will find more information at: https://access.redhat.com/errata/RHSA-2024:8023

    Red Hat Security Advisory RHSA-2024:7052 dated 2024-09-24 (09.24.2024)
    You will find more information at: https://access.redhat.com/errata/RHSA-2024:7052

    Red Hat Bugzilla – Bug 2309758 (09/23/2024)
    You will find more information at: https://bugzilla.redhat.com/show_bug.cgi?id=2309758

    Red Hat Bugzilla – Bug 2274437 (09/23/2024)
    You will find more information at: https://bugzilla.redhat.com/show_bug.cgi?id=2274437

    Red Hat Security Advisory dated 2024-09-23 (09/23/2024)
    You will find more information at: https://access.redhat.com/errata/RHSA-2024:6437

    Versionshistorie dieses Sicherheitshinweises

    This is the 4. Release of new IT security technologies for the Red Hat JBoss Enterprise Support Platform. Sollten weitere Updates bekanntgegeben werden, wird this text updated. You may find articles or changes in this story in later versions.

    09.23.2024 – Initial Fassung
    09.24.2024 – New updates from Red Hat aufgenommen
    09/25/2024 – enter current date URL
    13.10.2024 – New updates from Red Hat aufgenommen

    +++ Editorial notes: This text has been written based on BSI data generated and will be updated according to warning dates. Nehmen comments and comments will be sent to [email protected]. +++

    Folgen Sie News.de schon bei Facebook, Twitter, Pinterest And YouTube? There you will find brand news, current videos and direct text for editorial.

    kns/roj/news.de

    Mars
    View all posts

    You Might Also Like