Bug 1337155 - CVE-2016-2106 openssl: EVP_EncryptUpdate overflow [jbews-2.1.0]
Summary: CVE-2016-2106 openssl: EVP_EncryptUpdate overflow [jbews-2.1.0]
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: JBoss Enterprise Web Server 2
Classification: JBoss
Component: openssl
Version: 2.1.0
Hardware: All
OS: Linux
medium
medium
Target Milestone: DR03
: 2.1.1
Assignee: George Zaronikas
QA Contact: Michal Karm Babacek
URL:
Whiteboard: component:openssl
Depends On:
Blocks: CVE-2016-2106
TreeView+ depends on / blocked
 
Reported: 2016-05-18 12:03 UTC by Timothy Walsh
Modified: 2016-08-22 18:10 UTC (History)
10 users (show)

Fixed In Version:
Doc Type: Release Note
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-08-22 18:10:03 UTC
Type: Support Patch


Attachments (Terms of Use)


Links
System ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2016:1648 normal SHIPPED_LIVE Important: Red Hat JBoss Web Server 2.1.1 security update on RHEL 7 2016-08-22 22:07:56 UTC
Red Hat Product Errata RHSA-2016:1649 normal SHIPPED_LIVE Important: Red Hat JBoss Web Server 2.1.1 security update on RHEL 6 2016-08-22 22:07:30 UTC
Red Hat Product Errata RHSA-2016:1650 normal SHIPPED_LIVE Important: Red Hat JBoss Web Server 2.1.1 security update 2016-08-22 22:07:23 UTC

Description Timothy Walsh 2016-05-18 12:03:45 UTC
jbews-2.1.0 tracking bug for openssl: see blocks bug list for full details of the security issue(s).

This bug is never intended to be made public, please put any public notes
in the blocked bugs.

[bug automatically created by: add-tracking-bugs]

Comment 3 errata-xmlrpc 2016-08-22 18:10:03 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHSA-2016-1650.html


Note You need to log in before you can comment on or make changes to this bug.