Fedora Account System
Red Hat Associate
Red Hat Customer
An issue in the createTempFile method of hornetq v2.4.9 allows attackers to arbitrarily overwrite files or access sensitive information.
Affected versions at least include all versions <= 2.4.9.Final (gav -> org.hornetq/hornetq-core-client/2.4.9.Final)
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7 Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8 Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9 Via RHSA-2024:11529 https://access.redhat.com/errata/RHSA-2024:11529
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform Via RHSA-2024:11531 https://access.redhat.com/errata/RHSA-2024:11531
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 8.0 for RHEL 9 Via RHSA-2024:11560 https://access.redhat.com/errata/RHSA-2024:11560
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 8.0 for RHEL 8 Via RHSA-2024:11559 https://access.redhat.com/errata/RHSA-2024:11559
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform Via RHSA-2024:11570 https://access.redhat.com/errata/RHSA-2024:11570
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform Via RHSA-2025:0372 https://access.redhat.com/errata/RHSA-2025:0372
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 8.0 for RHEL 9 Red Hat JBoss Enterprise Application Platform 8.0 for RHEL 8 Via RHSA-2025:0371 https://access.redhat.com/errata/RHSA-2025:0371
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform Via RHSA-2025:1635 https://access.redhat.com/errata/RHSA-2025:1635
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9 Via RHSA-2025:1638 https://access.redhat.com/errata/RHSA-2025:1638
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7 Via RHSA-2025:1636 https://access.redhat.com/errata/RHSA-2025:1636
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8 Via RHSA-2025:1637 https://access.redhat.com/errata/RHSA-2025:1637
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 Via RHSA-2025:16668 https://access.redhat.com/errata/RHSA-2025:16668
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7 Via RHSA-2025:16667 https://access.redhat.com/errata/RHSA-2025:16667
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7 Via RHSA-2025:1635 https://access.redhat.com/errata/RHSA-2025:1635
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7 Via RHSA-2025:3467 https://access.redhat.com/errata/RHSA-2025:3467