RHSA-2020:4402: Important: Red Hat JBoss Enterprise Application Platform 7.3 security update
Red Hat JBoss Enterprise Application Platform 7.3 is a platform for Java applications based on the WildFly application runtime.This asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.3.Security Fix(es): jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (CVE-2020-25649) For more details about the security issue(s), including the impact, a CVSS score, and other related information, see the CVE page(s) listed in the References section.
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2020:4402?
The severity of RHSA-2020:4402 is classified as important.
How do I fix RHSA-2020:4402?
To fix RHSA-2020:4402, you should apply the available security updates for Red Hat JBoss Enterprise Application Platform 7.3.
Is RHSA-2020:4402 related to jackson-databind?
Yes, RHSA-2020:4402 includes a security fix for jackson-databind.
What version of Red Hat JBoss is affected by RHSA-2020:4402?
RHSA-2020:4402 affects Red Hat JBoss Enterprise Application Platform version 7.3.
When was RHSA-2020:4402 released?
RHSA-2020:4402 was released as an asynchronous patch security update for JBoss on the specified date.