Back to bug 1403824
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Horia Chiorean | 2016-12-12 12:44:39 UTC | CC | hchiorea | |
| Martin Prpič | 2016-12-12 12:44:46 UTC | Depends On | 1403825 | |
| Martin Prpič | 2016-12-12 12:48:29 UTC | Blocks | 1403827 | |
| Hooman Broujerdi | 2016-12-12 23:42:57 UTC | Whiteboard | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,fuse-6/jbossweb=affected,openshift-1/jbossweb=notaffected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=notaffected,rhel-7/tomcat=notaffected,jbews-2/tomcat7=notaffected,jbews-2/tomcat6=notaffected,jbews-3/tomcat7=notaffected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=notaffected | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=notaffected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=notaffected,rhel-7/tomcat=notaffected,jbews-2/tomcat7=notaffected,jbews-2/tomcat6=notaffected,jbews-3/tomcat7=notaffected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=notaffected |
| Hooman Broujerdi | 2016-12-12 23:44:21 UTC | Whiteboard | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=notaffected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=notaffected,rhel-7/tomcat=notaffected,jbews-2/tomcat7=notaffected,jbews-2/tomcat6=notaffected,jbews-3/tomcat7=notaffected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=notaffected | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=notaffected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=notaffected,rhel-7/tomcat=notaffected,jbews-2/tomcat7=notaffected,jbews-2/tomcat6=notaffected,jbews-3/tomcat7=notaffected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=notaffected,fuse-6/karaf=notaffected |
| Coty Sutherland | 2017-01-05 18:08:59 UTC | CC | mprpic | |
| Flags | needinfo?(mprpic) | |||
| Martin Prpič | 2017-01-06 08:08:33 UTC | Whiteboard | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=notaffected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=notaffected,rhel-7/tomcat=notaffected,jbews-2/tomcat7=notaffected,jbews-2/tomcat6=notaffected,jbews-3/tomcat7=notaffected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=notaffected,fuse-6/karaf=notaffected | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=affected,jbews-2/tomcat6=affected,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected |
| Flags | needinfo?(mprpic) | |||
| Andrej Nemec | 2017-01-06 08:38:37 UTC | Fixed In Version | tomcat 8.5.9, tomcat 9.0.0.M15 | tomcat 8.5.9, tomcat 9.0.0.M15, tomcat 6.0.49, tomcat 7.0.74, tomcat 8.0.40 |
| Yasuhiro Ozone | 2017-01-16 04:48:00 UTC | CC | yozone | |
| Timothy Walsh | 2017-01-16 13:06:24 UTC | CC | hchiorea | |
| Depends On | 1413589, 1413588 | |||
| Timothy Walsh | 2017-01-16 13:08:08 UTC | Depends On | 1413591, 1413592 | |
| Timothy Walsh | 2017-01-16 13:14:45 UTC | Whiteboard | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=affected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=affected,jbews-2/tomcat6=affected,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=affected,jbews-2/tomcat6=affected,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected |
| Timothy Walsh | 2017-01-16 13:21:06 UTC | Whiteboard | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=affected,jbews-2/tomcat6=affected,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected |
| Horia Chiorean | 2017-01-16 13:21:53 UTC | CC | hchiorea | |
| Timothy Walsh | 2017-01-17 05:14:47 UTC | CC | hchiorea | |
| Whiteboard | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7,tomcat8=affected | ||
| Timothy Walsh | 2017-01-17 05:29:26 UTC | Whiteboard | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7,tomcat8=affected | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7,jws-3/tomcat8=affected |
| Timothy Walsh | 2017-01-17 05:35:05 UTC | Whiteboard | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7,jws-3/tomcat8=affected | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7=affected,jws-3/tomcat8=affected |
| Timothy Walsh | 2017-01-17 05:36:17 UTC | Whiteboard | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=affected,jbews-3/tomcat8=affected,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7=affected,jws-3/tomcat8=affected |
| Andrej Nemec | 2017-01-30 13:39:42 UTC | Fixed In Version | tomcat 8.5.9, tomcat 9.0.0.M15, tomcat 6.0.49, tomcat 7.0.74, tomcat 8.0.40 | tomcat 8.5.9, tomcat 9.0.0.M15, tomcat 6.0.50, tomcat 7.0.75, tomcat 8.0.41 |
| Coty Sutherland | 2017-02-17 20:33:40 UTC | Flags | needinfo?(mprpic) | |
| Martin Prpič | 2017-02-19 16:49:28 UTC | Depends On | 1424820 | |
| Martin Prpič | 2017-02-19 16:50:42 UTC | Flags | needinfo?(mprpic) | |
| kat | 2017-02-27 18:54:03 UTC | CC | kbost | |
| Timothy Walsh | 2017-03-02 07:41:26 UTC | Doc Text | A bug was discovered in the error handling of the send file code for the NIO HTTP connector. This lead to the current Processor object being added to the Processor cache multiple times allowing information leakage between requests including, not not limited to, session ID and the response body. | |
| Timothy Walsh | 2017-03-02 07:42:22 UTC | Doc Text | A bug was discovered in the error handling of the send file code for the NIO HTTP connector. This lead to the current Processor object being added to the Processor cache multiple times allowing information leakage between requests including, not not limited to, session ID and the response body. | A bug was discovered in the error handling of the send file code for the NIO HTTP connector. This lead to the current Processor object being added to the Processor cache multiple times allowing information leakage between requests including, and not limited to, session ID and the response body. |
| Timothy Walsh | 2017-03-02 11:22:38 UTC | Blocks | 1428325 | |
| Eric Christensen | 2017-03-02 18:37:13 UTC | Doc Text | A bug was discovered in the error handling of the send file code for the NIO HTTP connector. This lead to the current Processor object being added to the Processor cache multiple times allowing information leakage between requests including, and not limited to, session ID and the response body. | A bug was discovered in the error handling of the send file code for the NIO HTTP connector. This led to the current Processor object being added to the Processor cache multiple times allowing information leakage between requests including, and not limited to, session ID and the response body. |
| Eric Christensen | 2017-03-07 16:25:21 UTC | Doc Text | A bug was discovered in the error handling of the send file code for the NIO HTTP connector. This led to the current Processor object being added to the Processor cache multiple times allowing information leakage between requests including, and not limited to, session ID and the response body. | A bug was discovered in the error handling of the send file code for the NIO HTTP connector. This led to the current Processor object being added to the Processor cache multiple times allowing information leakage between requests including, and not limited to, session ID and the response body. |
| Rose Dovell | 2017-03-16 18:13:40 UTC | CC | rdovell | |
| Adam Mariš | 2017-04-13 21:55:33 UTC | Priority | medium | high |
| Whiteboard | impact=moderate,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.9/CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | ||
| Severity | medium | high | ||
| Doran Moppert | 2017-05-03 05:19:17 UTC | Blocks | 1415638 | |
| Doran Moppert | 2017-05-03 06:08:42 UTC | Blocks | 1415638 | |
| Tomas Hoger | 2017-05-03 09:21:10 UTC | Blocks | 1403827 | |
| Tomas Hoger | 2017-05-03 09:26:13 UTC | Blocks | 1403827 | |
| Pavel Polischouk | 2017-06-02 00:25:52 UTC | Whiteboard | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=affected,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=affected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=wontfix,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7=affected,jws-3/tomcat8=affected |
| Timothy Walsh | 2017-06-07 09:57:52 UTC | CC | apintea, bkundal, dimitris, fgavrilo, jondruse, pjurak, ppalaga, rstancel, sstavrev | |
| Whiteboard | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=wontfix,eap-5/jbossweb=affected,eap-6/jbossweb=affected,jdg-6/jbossweb=affected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=wontfix,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=affected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | ||
| Timothy Walsh | 2017-06-07 10:00:50 UTC | CC | loleary | |
| Whiteboard | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=wontfix,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=affected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=affected,fsw-6/jbossweb=affected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=affected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=notaffected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | ||
| Kurt Seifried | 2017-06-22 00:36:18 UTC | Whiteboard | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=notaffected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=defer,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=notaffected,jws-3/tomcat7=affected,jws-3/tomcat8=affected |
| Kurt Seifried | 2017-07-13 02:08:46 UTC | Whiteboard | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=defer,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=notaffected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=notaffected,jws-3/tomcat7=affected,jws-3/tomcat8=affected |
| Kurt Seifried | 2017-07-13 02:09:37 UTC | Depends On | 1470474 | |
| Vincent Danen | 2017-07-25 21:06:11 UTC | Whiteboard | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,jbews-3/tomcat7=defer,jbews-3/tomcat8=defer,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=notaffected,jws-3/tomcat7=affected,jws-3/tomcat8=affected | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=notaffected,jws-3/tomcat7=affected,jws-3/tomcat8=affected |
| Joel Smith | 2017-07-31 22:36:48 UTC | CC | joelsmith | |
| PnT Account Manager | 2017-12-07 23:59:29 UTC | CC | felias | |
| PnT Account Manager | 2018-01-30 20:41:00 UTC | CC | hchiorea | |
| PnT Account Manager | 2018-05-10 18:19:28 UTC | CC | pavelp | |
| Patrick van Staveren | 2018-05-10 18:48:03 UTC | CC | trick | |
| PnT Account Manager | 2018-06-01 21:39:33 UTC | CC | sstavrev | |
| PnT Account Manager | 2018-10-19 21:38:55 UTC | CC | bkundal | |
| PnT Account Manager | 2019-04-05 03:15:03 UTC | CC | apintea | |
| Product Security DevOps Team | 2019-06-08 03:04:10 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 03:04:10 UTC | |||
| Product Security DevOps Team | 2019-09-29 14:02:45 UTC | Whiteboard | impact=important,public=20161212,reported=20161212,source=internet,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N,brms-5/jbossweb=notaffected,eap-5/jbossweb=notaffected,eap-6/jbossweb=notaffected,jdg-6/jbossweb=notaffected,jdv-6/jbossweb=notaffected,jon-3/jbossweb=notaffected,fsw-6/jbossweb=notaffected,openshift-1/jbossweb=affected,rhel-5/tomcat5=notaffected,rhel-6/tomcat6=affected,rhel-7/tomcat=affected,jbews-2/tomcat7=wontfix,jbews-2/tomcat6=wontfix,fedora-all/tomcat=affected,epel-6/tomcat=affected,fuse-6/karaf=notaffected,jws-3/tomcat7=affected,jws-3/tomcat8=affected |
Back to bug 1403824