Invocation of an EJB is failing on the client side with the invocation-timeout being hit. Reference: https://issues.redhat.com/browse/EAPSUP-651
Comment made in error
Marking Red Hat Fuse 6 as being affected at a low impact, this is because although versions of undertow affected by this vulnerability are distributed and used by Fuse 6, the vulnerable HTTP2 functionality in undertow is not used in Fuse 6. This vulnerability is out of security support scope for the following products: * Red Hat JBoss Fuse 6 Please refer to https://access.redhat.com/support/policy/updates/jboss_notes for more details.
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7 Via RHSA-2022:0400 https://access.redhat.com/errata/RHSA-2022:0400
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8 Via RHSA-2022:0401 https://access.redhat.com/errata/RHSA-2022:0401
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform Via RHSA-2022:0404 https://access.redhat.com/errata/RHSA-2022:0404
This issue has been addressed in the following products: EAP 7.3 async Via RHSA-2022:0406 https://access.redhat.com/errata/RHSA-2022:0406
This issue has been addressed in the following products: Red Hat JBoss Enterprise Application Platform 7.3 for RHEL 7 Red Hat JBoss Enterprise Application Platform 7.3 for RHEL 6 Red Hat JBoss Enterprise Application Platform 7.3 for RHEL 8 Via RHSA-2022:0405 https://access.redhat.com/errata/RHSA-2022:0405
This issue has been addressed in the following products: RHSSO 7.5.1 Via RHSA-2022:0407 https://access.redhat.com/errata/RHSA-2022:0407
This issue has been addressed in the following products: Red Hat Single Sign-On 7.4.10 Via RHSA-2022:0408 https://access.redhat.com/errata/RHSA-2022:0408
This issue has been addressed in the following products: RHEL-8 based Middleware Containers Via RHSA-2022:0409 https://access.redhat.com/errata/RHSA-2022:0409
This issue has been addressed in the following products: RHEL-8 based Middleware Containers Via RHSA-2022:0410 https://access.redhat.com/errata/RHSA-2022:0410
This issue has been addressed in the following products: RHEL-8 based Middleware Containers Via RHSA-2022:0415 https://access.redhat.com/errata/RHSA-2022:0415
This issue has been addressed in the following products: Red Hat Single Sign-On 7.5 for RHEL 8 Via RHSA-2022:0448 https://access.redhat.com/errata/RHSA-2022:0448
This issue has been addressed in the following products: Red Hat Single Sign-On 7.5 for RHEL 7 Via RHSA-2022:0447 https://access.redhat.com/errata/RHSA-2022:0447
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-3859
This issue has been addressed in the following products: Red Hat Support for Spring Boot 2.5.10 Via RHSA-2022:1179 https://access.redhat.com/errata/RHSA-2022:1179
This issue has been addressed in the following products: Red Hat Fuse 7.11 Via RHSA-2022:5532 https://access.redhat.com/errata/RHSA-2022:5532