Red Hat Product Errata RHSA-2017:3240 - Security Advisory

Issued:: 2017-11-16
Updated:: 2017-11-16

RHSA-2017:3240 - Security Advisory

Overview
Updated Packages

Synopsis

Important: Red Hat JBoss Enterprise Application Platform 6.4.18 security update

Type/Severity

Security Advisory: Important

Topic

An update is now available for Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 6 and Red Hat JBoss Enterprise Application Platform 6.4 for RHEL 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

[Updated 21st November 2017]
Previously, this erratum was marked as a replacement of the JBoss Enterprise Application Platform 6.4.16 Natives. This was incorrect; the erratum is an update, not a replacement. The erratum text has been modified to reflect this.

Description

Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server.

This release provides an update to httpd and OpenSSL. The updates are documented in the Release Notes document linked to in the References.

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server.

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.

This release of JBoss Enterprise Application Platform 6.4.18 Natives serves as an update to the JBoss Enterprise Application Platform 6.4.16 Natives and includes bug fixes which are documented in the Release Notes document linked to in the References.

All users of Red Hat JBoss Enterprise Application Platform 6.4 Natives are advised to upgrade to these updated packages.

Security Fix(es):

It was discovered that the httpd's mod_auth_digest module did not properly initialize memory before using it when processing certain headers related to digest authentication. A remote attacker could possibly use this flaw to disclose potentially sensitive information or cause httpd child process to crash by sending specially crafted requests to a server. (CVE-2017-9788)
A flaw was found in the way the DES/3DES cipher was used as part of the TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover some plaintext data by capturing large amounts of encrypted traffic between TLS/SSL server and client if the communication used a DES/3DES based ciphersuite. (CVE-2016-2183)
A use-after-free flaw was found in the way httpd handled invalid and previously unregistered HTTP methods specified in the Limit directive used in an .htaccess file. A remote attacker could possibly use this flaw to disclose portions of the server memory, or cause httpd child process to crash. (CVE-2017-9798)

Red Hat would like to thank OpenVPN for reporting CVE-2016-2183 and Hanno Böck for reporting CVE-2017-9798. Upstream acknowledges Karthikeyan Bhargavan (Inria) and Gaëtan Leurent (Inria) as the original reporters of CVE-2016-2183.

Bug Fix(es):

CRL checking of very large CRLs fails with OpenSSL 1.0.2 (BZ#1508880)
mod_cluster segfaults in process_info() due to wrongly generated assembler instruction movslq (BZ#1508884)
Corruption in nodestatsmem in multiple core dumps but in different functions of each core dump. (BZ#1508885)

Solution

Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

After installing the updated packages, the httpd daemon will be restarted automatically. For the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted. The JBoss server process must be restarted for the update to take effect.

Affected Products

JBoss Enterprise Application Platform 6.4 for RHEL 7 x86_64
JBoss Enterprise Application Platform 6.4 for RHEL 7 ppc64
JBoss Enterprise Application Platform 6.4 for RHEL 6 x86_64
JBoss Enterprise Application Platform 6.4 for RHEL 6 ppc64
JBoss Enterprise Application Platform 6.4 for RHEL 6 i386
JBoss Enterprise Application Platform 6 for RHEL 7 x86_64
JBoss Enterprise Application Platform 6 for RHEL 7 ppc64
JBoss Enterprise Application Platform 6 for RHEL 6 x86_64
JBoss Enterprise Application Platform 6 for RHEL 6 ppc64
JBoss Enterprise Application Platform 6 for RHEL 6 i386

Fixes

BZ - 1369383 - CVE-2016-2183 SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)
BZ - 1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection in mod_auth_digest
BZ - 1490344 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method (Optionsbleed)
BZ - 1508880 - Unable to load large CRL openssl problem
BZ - 1508884 - mod_cluster segfaults in process_info() due to wrongly generated assembler instruction movslq
BZ - 1508885 - SegFault due to corrupt nodestatsmem

CVEs

References

Note: More recent versions of these packages may be available. Click a package name for more details.

JBoss Enterprise Application Platform 6.4 for RHEL 7

SRPM
httpd22-2.2.26-58.ep6.el7.src.rpm	SHA-256: e43121bdfb8f926d8e0943635cf5603fc81266bee3dc8daca766459581bc3bee
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el7.src.rpm	SHA-256: 8dab352d5fb849bf1e156e0f963100597a0d59865086178994c6cd757bacca27
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el7.src.rpm	SHA-256: 3a556b0af3f2ef3938948c840d9c7a7c2b1c58ca51607be8a861345b0836d85e
x86_64
httpd22-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: 7fb23087cec010093dd644fa42fe5bb2f825dfc9cd402a1aa85c67b3d5d30284
httpd22-debuginfo-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: b1004c699b98249008156b34db52a584196ed47140147d50311a50c6b94980ec
httpd22-devel-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: a0044c439d4f1d49bdb717954747881617dc33e3068c9f6428139f8aad07a234
httpd22-manual-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: 80ce659dc459a5e99ebe05013d90ff1fc9c075161e517351141fcd96ff6a2628
httpd22-tools-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: eaf345e6a976288a7fee9c8a3c0cf911e1bfdf344057b4a5a12def55f7a969f8
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 3e2cbb7afac1763265e7aade677b55dde94b092cc293bdc138d4d63ede02100d
jbcs-httpd24-openssl-debuginfo-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 5cb86e8ce6aa226fcc74d8dd66d67098e438bb3950e40a67474b5ee2ef70dbe6
jbcs-httpd24-openssl-devel-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 0d122b9590a32813708f58b6c8ab72e11bd41a4de6aee478f2a23601fd5bf7c1
jbcs-httpd24-openssl-libs-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 7573dce77ec2d028ac054a56b4869f49f8ddb5b5b6bb1e02c7fc6bb52e85dc4a
jbcs-httpd24-openssl-perl-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 5cb831e54fc67bd00c2a57c04e22f698d848e07cf59e66e2a8a35e252f18e122
jbcs-httpd24-openssl-static-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 0a6c87fc6b670ea42f5f885de5ae9c7a3fc8f54d63209b248cf210f4650f079d
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el7.x86_64.rpm	SHA-256: 0e79e9f6a2b8dddff880b64a6c7c808cc2f28eccdc45bf5febf7ee7c4974cc84
mod_cluster-native-debuginfo-1.2.13-9.Final_redhat_2.ep6.el7.x86_64.rpm	SHA-256: 44bf06c30ed6ebd15d5022ecd2ab30f542ee5b6bfaccba09adfd67c5d028cd1a
mod_ldap22-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: ec68c142b8d6e1242459a1a8ecbb80758c228bab29253ae3af37a6fabd0eb773
mod_ssl22-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: e8fb3287d19f051be5881cf91b9bc612ae972c5216b019935246b734eba2d04e
ppc64
httpd22-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 415d75b81e326fa5c06ff7c7af658bc5e5d2a4d7fcb9d6494bed5983422f872b
httpd22-debuginfo-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 8f43ec3571e990fb89379fd436eabc68702cf845701b3b1e0aaccfacd4cdc760
httpd22-devel-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 7ac6d4cd076778049682b9c4d47c267dbb6fdbb9a5de2aa37a457bd731fa576a
httpd22-manual-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 9b869edc28aabb037889b1e08978ed27da92e7161d90f16e6b36c9b63459c0db
httpd22-tools-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 2fad2bea3aaf9c42dcfcf0211976dad7d4d8829c60596724a0b7cacb1d53ac98
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: f1082ce9744c910fe2667b8db6d4825a73942a329b66af85a19134ffd188a32d
jbcs-httpd24-openssl-debuginfo-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: 0930b22598bee84df42407eb7beef6786a42aad0d427247d3bf85aedb5bdbbaa
jbcs-httpd24-openssl-devel-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: 3f16a85ecba8b33459045bc74b90146e5c0904062f800d2845cac9cd3166da3a
jbcs-httpd24-openssl-libs-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: e43738ec566ab1e5a90f0bec1bcfc0d9f6f92946267d739681cadd76c8a21319
jbcs-httpd24-openssl-perl-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: c7f657217fb8a0e73dd7393039b43010d0d30f6b5f6b1bfca3cc6a570aab77ef
jbcs-httpd24-openssl-static-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: 656cd752ea55f0a30a847be60df3250d7c9d51ab01543a48fc45ca845841e286
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el7.ppc64.rpm	SHA-256: 80371da5717d5f0f96f5c62ed797dd21563b284e701e107e316ec2d194932fb1
mod_cluster-native-debuginfo-1.2.13-9.Final_redhat_2.ep6.el7.ppc64.rpm	SHA-256: e857ec21eec84db03421c4fb0ed48f6d3e3e5013e8cdd76b3ccc08ee3efea963
mod_ldap22-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 2efd59afb498bc37cf1337e2cc6486e2dacea2593db63a5ba64677e626cfd791
mod_ssl22-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 9d7232da9a8ffe7b7a95559342743d135f94ea9922bc2e6bffe747d8d4ce6271

JBoss Enterprise Application Platform 6.4 for RHEL 6

SRPM
httpd-2.2.26-57.ep6.el6.src.rpm	SHA-256: dd5218d5514e463f7b19f3b11bc1fca82b34eb3e39cd998ff9372dbad1c2ccaf
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el6.src.rpm	SHA-256: 2e4970ca97daca02f654fcbff429c4dcb3acd96b04feb4d6e647e287787e3e8a
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el6.src.rpm	SHA-256: 5a53ffc3327fb4aca391cdd198ce5ed44e1989fb15bc0d43c4fb361f9779707b
x86_64
httpd-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: 1860dfb9b8858517d9f172ae9abda6628b2dec7d6fe2ccf18a5d37e38eca400c
httpd-debuginfo-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: ea8d3d00f0fd3f4c57ddd98ec79ac0e0485cee921c2086080b6ffbbb0da41f67
httpd-devel-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: 1c98c8995249c20c2c3298fc8e29f5bf3b1f223ba1c0580f0ea79a929d7c3282
httpd-manual-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: a00c9f0761d360de00402f3b8edd5a60476448462cdebbde66093f58b847925d
httpd-tools-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: bf103f269014f3d35729b7bd328ffa2ac69d201e8911e6dbb024f6bc9eb48b9f
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: af0239c9d40762d0a31edbcae831ee2720a372269465d5bb6216bf595cc02605
jbcs-httpd24-openssl-debuginfo-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: 64de9b4ddce62eb5703566bb83970fae8109feccd3b300757e6cefa3cda8c99c
jbcs-httpd24-openssl-devel-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: 509ba07395f91fe6df88d3812b452c5c5af95876825d0e6101ab20108f4f2a42
jbcs-httpd24-openssl-libs-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: 92afa7ba60585d010a9fcf17ce2517671e574200f5a053ac25563e91a9d3b3b2
jbcs-httpd24-openssl-perl-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: 481034e1be4cf91cd91852406a97ae3de789bd18cdade49426709dde9a5aaa13
jbcs-httpd24-openssl-static-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: 4c28c46af9c18163e0a34eda351d261a8c2dff951182415371c47657e6b069c2
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el6.x86_64.rpm	SHA-256: 94c3df34aa3a4b5e98130021e9002d2ca6660fcc38dc55c448fb7cb5dcac162c
mod_cluster-native-debuginfo-1.2.13-9.Final_redhat_2.ep6.el6.x86_64.rpm	SHA-256: 56e26d6b710688af0dcf9db61b6f66d47bfb2dfb6d426853f7a8674ea89de5ef
mod_ldap-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: c0bc26891e0ecbc3c29393bcb1223be2ab93fbff3b65d06ed5ac0ad54dd053b0
mod_ssl-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: 77ab1687bdae2ae5d8d18f0a60ab938482471c4810c159a855e8a492f3b99335
ppc64
httpd-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 8a819619d8b916005c744b7fa6bb38c6352ff7d0e8bfe03bb44eca114dcc7bcc
httpd-debuginfo-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 6a3e6dd9f8ceb6fc0d6da3e678b1d7a37be15d256b7261943d6cad2a20b631ef
httpd-devel-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 756b7969e28e4569146a8f316937296543cee5d006673e67f3c617d91c266340
httpd-manual-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: fa08ffed203d3ce7f77368517e874e2a0fbd3fefb1714f27da9e92b7ee09b18b
httpd-tools-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 35e2790a72b72d04f7459f8410d20bfaba2c87ee4b9b4c7f9e3daa198bcc749c
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: 57d0b3a8de6bc4eb2ae785ef64ee4dea668a50079f4dba3ed1d41efd3470d4c8
jbcs-httpd24-openssl-debuginfo-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: f0094ed775de897c06faff808eb57b6ace7b0ed5d61ff873826471cae325915a
jbcs-httpd24-openssl-devel-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: 0888934da865e916aa2cf0e88ee654a0b2ee81717ffb288326a679502d595cf1
jbcs-httpd24-openssl-libs-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: e3527ab24b023a28f929545275b47dc584bca29ee73180802457dc172498a1b1
jbcs-httpd24-openssl-perl-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: 8d8ab3c016daf879051626b7e8c0707697c78b1c19e8b267be09415d3f06dd8a
jbcs-httpd24-openssl-static-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: 85e1f7ada14358f1755d25225b8304df0f16d10ccae2f3ec39dfd1463db4f333
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el6.ppc64.rpm	SHA-256: 2b9a757b90c1db157dd1d209ba5a7a7e3c3c8c263cc6a0254df6a428aa246371
mod_cluster-native-debuginfo-1.2.13-9.Final_redhat_2.ep6.el6.ppc64.rpm	SHA-256: a65dc8474bb9aa3a2585ee093b1c0945010a48cd737686d426719f62fef23bb9
mod_ldap-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 20755476cc1ac036ac3a8bbd29e6c91918ad8dd32554d4f5e1685b81a3c92b57
mod_ssl-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 7fa3d1d23d9d2fae67198e0db2b3ae883e4938f5595655cd0be3dd8a437a4cd7
i386
httpd-2.2.26-57.ep6.el6.i386.rpm	SHA-256: 6ee90e59e6f39b91ff5c067302fa3a63d4360feb029363ede95f9383a201efb7
httpd-debuginfo-2.2.26-57.ep6.el6.i386.rpm	SHA-256: 8983e735773aab233e859e3c4988e080b75434153f41af5eb26ed36bb7c10ee1
httpd-devel-2.2.26-57.ep6.el6.i386.rpm	SHA-256: d0046f3e125f370e62dc74231a841c920e58b3957941d01170664ebda05234f0
httpd-manual-2.2.26-57.ep6.el6.i386.rpm	SHA-256: ed4321fccab310bd036c4d6eb4263506a47fd0e35dcc252e101c56c96e608b6a
httpd-tools-2.2.26-57.ep6.el6.i386.rpm	SHA-256: 54e9a3b939a70b351ec841650714c2f13decdfac10ed67b8a68f177f60e4ae9d
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: 0a775eed41df61fd31b8fa965a309aa7f64d0f73eb059f0592722217c8b60135
jbcs-httpd24-openssl-debuginfo-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: 3ac01d262dd6d15308365366f443569112f78ed623d1a0435bd62eb7359c5da6
jbcs-httpd24-openssl-devel-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: 961cf60add91c711141ce2048254207c7b338345d4414abb2924cf01a8181416
jbcs-httpd24-openssl-libs-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: 6462602c950da58c796389cdb60b182d00fc049addf28fec47eeb1b2dbc3f98c
jbcs-httpd24-openssl-perl-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: fdc87087cc2448468815b13c4811a02993ca610f90f20b64c27a3a2503dde313
jbcs-httpd24-openssl-static-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: 9e2d07e29baf645ea1ba01a8d9f29180c6809d485aa3d2e0f708f4044b03096c
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el6.i386.rpm	SHA-256: bcf046462790a6ed1060eba67e08e14fc970311bb4817ad4ba32656b6c966bd2
mod_cluster-native-debuginfo-1.2.13-9.Final_redhat_2.ep6.el6.i386.rpm	SHA-256: 27959b9dd7c2a19381fb4313ffa7d4d1449acc0bc5e69e4c4c9d71dee5a1d157
mod_ldap-2.2.26-57.ep6.el6.i386.rpm	SHA-256: 4c88af9bd0a40f8d49d9c124a339db0da5667e8e002dbc17f2ce86dfceef4b06
mod_ssl-2.2.26-57.ep6.el6.i386.rpm	SHA-256: ce3d75d15d42648b5cc8594b44d906836ec4fedd2e0ca1048b580202afd5130c

JBoss Enterprise Application Platform 6 for RHEL 7

SRPM
httpd22-2.2.26-58.ep6.el7.src.rpm	SHA-256: e43121bdfb8f926d8e0943635cf5603fc81266bee3dc8daca766459581bc3bee
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el7.src.rpm	SHA-256: 8dab352d5fb849bf1e156e0f963100597a0d59865086178994c6cd757bacca27
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el7.src.rpm	SHA-256: 3a556b0af3f2ef3938948c840d9c7a7c2b1c58ca51607be8a861345b0836d85e
x86_64
httpd22-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: 7fb23087cec010093dd644fa42fe5bb2f825dfc9cd402a1aa85c67b3d5d30284
httpd22-debuginfo-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: b1004c699b98249008156b34db52a584196ed47140147d50311a50c6b94980ec
httpd22-devel-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: a0044c439d4f1d49bdb717954747881617dc33e3068c9f6428139f8aad07a234
httpd22-manual-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: 80ce659dc459a5e99ebe05013d90ff1fc9c075161e517351141fcd96ff6a2628
httpd22-tools-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: eaf345e6a976288a7fee9c8a3c0cf911e1bfdf344057b4a5a12def55f7a969f8
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 3e2cbb7afac1763265e7aade677b55dde94b092cc293bdc138d4d63ede02100d
jbcs-httpd24-openssl-debuginfo-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 5cb86e8ce6aa226fcc74d8dd66d67098e438bb3950e40a67474b5ee2ef70dbe6
jbcs-httpd24-openssl-devel-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 0d122b9590a32813708f58b6c8ab72e11bd41a4de6aee478f2a23601fd5bf7c1
jbcs-httpd24-openssl-libs-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 7573dce77ec2d028ac054a56b4869f49f8ddb5b5b6bb1e02c7fc6bb52e85dc4a
jbcs-httpd24-openssl-perl-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 5cb831e54fc67bd00c2a57c04e22f698d848e07cf59e66e2a8a35e252f18e122
jbcs-httpd24-openssl-static-1.0.2h-14.jbcs.el7.x86_64.rpm	SHA-256: 0a6c87fc6b670ea42f5f885de5ae9c7a3fc8f54d63209b248cf210f4650f079d
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el7.x86_64.rpm	SHA-256: 0e79e9f6a2b8dddff880b64a6c7c808cc2f28eccdc45bf5febf7ee7c4974cc84
mod_cluster-native-debuginfo-1.2.13-9.Final_redhat_2.ep6.el7.x86_64.rpm	SHA-256: 44bf06c30ed6ebd15d5022ecd2ab30f542ee5b6bfaccba09adfd67c5d028cd1a
mod_ldap22-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: ec68c142b8d6e1242459a1a8ecbb80758c228bab29253ae3af37a6fabd0eb773
mod_ssl22-2.2.26-58.ep6.el7.x86_64.rpm	SHA-256: e8fb3287d19f051be5881cf91b9bc612ae972c5216b019935246b734eba2d04e
ppc64
httpd22-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 415d75b81e326fa5c06ff7c7af658bc5e5d2a4d7fcb9d6494bed5983422f872b
httpd22-debuginfo-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 8f43ec3571e990fb89379fd436eabc68702cf845701b3b1e0aaccfacd4cdc760
httpd22-devel-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 7ac6d4cd076778049682b9c4d47c267dbb6fdbb9a5de2aa37a457bd731fa576a
httpd22-manual-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 9b869edc28aabb037889b1e08978ed27da92e7161d90f16e6b36c9b63459c0db
httpd22-tools-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 2fad2bea3aaf9c42dcfcf0211976dad7d4d8829c60596724a0b7cacb1d53ac98
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: f1082ce9744c910fe2667b8db6d4825a73942a329b66af85a19134ffd188a32d
jbcs-httpd24-openssl-debuginfo-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: 0930b22598bee84df42407eb7beef6786a42aad0d427247d3bf85aedb5bdbbaa
jbcs-httpd24-openssl-devel-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: 3f16a85ecba8b33459045bc74b90146e5c0904062f800d2845cac9cd3166da3a
jbcs-httpd24-openssl-libs-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: e43738ec566ab1e5a90f0bec1bcfc0d9f6f92946267d739681cadd76c8a21319
jbcs-httpd24-openssl-perl-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: c7f657217fb8a0e73dd7393039b43010d0d30f6b5f6b1bfca3cc6a570aab77ef
jbcs-httpd24-openssl-static-1.0.2h-14.jbcs.el7.ppc64.rpm	SHA-256: 656cd752ea55f0a30a847be60df3250d7c9d51ab01543a48fc45ca845841e286
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el7.ppc64.rpm	SHA-256: 80371da5717d5f0f96f5c62ed797dd21563b284e701e107e316ec2d194932fb1
mod_cluster-native-debuginfo-1.2.13-9.Final_redhat_2.ep6.el7.ppc64.rpm	SHA-256: e857ec21eec84db03421c4fb0ed48f6d3e3e5013e8cdd76b3ccc08ee3efea963
mod_ldap22-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 2efd59afb498bc37cf1337e2cc6486e2dacea2593db63a5ba64677e626cfd791
mod_ssl22-2.2.26-58.ep6.el7.ppc64.rpm	SHA-256: 9d7232da9a8ffe7b7a95559342743d135f94ea9922bc2e6bffe747d8d4ce6271

JBoss Enterprise Application Platform 6 for RHEL 6

SRPM
httpd-2.2.26-57.ep6.el6.src.rpm	SHA-256: dd5218d5514e463f7b19f3b11bc1fca82b34eb3e39cd998ff9372dbad1c2ccaf
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el6.src.rpm	SHA-256: 2e4970ca97daca02f654fcbff429c4dcb3acd96b04feb4d6e647e287787e3e8a
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el6.src.rpm	SHA-256: 5a53ffc3327fb4aca391cdd198ce5ed44e1989fb15bc0d43c4fb361f9779707b
x86_64
httpd-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: 1860dfb9b8858517d9f172ae9abda6628b2dec7d6fe2ccf18a5d37e38eca400c
httpd-debuginfo-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: ea8d3d00f0fd3f4c57ddd98ec79ac0e0485cee921c2086080b6ffbbb0da41f67
httpd-devel-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: 1c98c8995249c20c2c3298fc8e29f5bf3b1f223ba1c0580f0ea79a929d7c3282
httpd-manual-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: a00c9f0761d360de00402f3b8edd5a60476448462cdebbde66093f58b847925d
httpd-tools-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: bf103f269014f3d35729b7bd328ffa2ac69d201e8911e6dbb024f6bc9eb48b9f
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: af0239c9d40762d0a31edbcae831ee2720a372269465d5bb6216bf595cc02605
jbcs-httpd24-openssl-debuginfo-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: 64de9b4ddce62eb5703566bb83970fae8109feccd3b300757e6cefa3cda8c99c
jbcs-httpd24-openssl-devel-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: 509ba07395f91fe6df88d3812b452c5c5af95876825d0e6101ab20108f4f2a42
jbcs-httpd24-openssl-libs-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: 92afa7ba60585d010a9fcf17ce2517671e574200f5a053ac25563e91a9d3b3b2
jbcs-httpd24-openssl-perl-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: 481034e1be4cf91cd91852406a97ae3de789bd18cdade49426709dde9a5aaa13
jbcs-httpd24-openssl-static-1.0.2h-14.jbcs.el6.x86_64.rpm	SHA-256: 4c28c46af9c18163e0a34eda351d261a8c2dff951182415371c47657e6b069c2
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el6.x86_64.rpm	SHA-256: 94c3df34aa3a4b5e98130021e9002d2ca6660fcc38dc55c448fb7cb5dcac162c
mod_cluster-native-debuginfo-1.2.13-9.Final_redhat_2.ep6.el6.x86_64.rpm	SHA-256: 56e26d6b710688af0dcf9db61b6f66d47bfb2dfb6d426853f7a8674ea89de5ef
mod_ldap-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: c0bc26891e0ecbc3c29393bcb1223be2ab93fbff3b65d06ed5ac0ad54dd053b0
mod_ssl-2.2.26-57.ep6.el6.x86_64.rpm	SHA-256: 77ab1687bdae2ae5d8d18f0a60ab938482471c4810c159a855e8a492f3b99335
ppc64
httpd-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 8a819619d8b916005c744b7fa6bb38c6352ff7d0e8bfe03bb44eca114dcc7bcc
httpd-debuginfo-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 6a3e6dd9f8ceb6fc0d6da3e678b1d7a37be15d256b7261943d6cad2a20b631ef
httpd-devel-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 756b7969e28e4569146a8f316937296543cee5d006673e67f3c617d91c266340
httpd-manual-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: fa08ffed203d3ce7f77368517e874e2a0fbd3fefb1714f27da9e92b7ee09b18b
httpd-tools-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 35e2790a72b72d04f7459f8410d20bfaba2c87ee4b9b4c7f9e3daa198bcc749c
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: 57d0b3a8de6bc4eb2ae785ef64ee4dea668a50079f4dba3ed1d41efd3470d4c8
jbcs-httpd24-openssl-debuginfo-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: f0094ed775de897c06faff808eb57b6ace7b0ed5d61ff873826471cae325915a
jbcs-httpd24-openssl-devel-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: 0888934da865e916aa2cf0e88ee654a0b2ee81717ffb288326a679502d595cf1
jbcs-httpd24-openssl-libs-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: e3527ab24b023a28f929545275b47dc584bca29ee73180802457dc172498a1b1
jbcs-httpd24-openssl-perl-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: 8d8ab3c016daf879051626b7e8c0707697c78b1c19e8b267be09415d3f06dd8a
jbcs-httpd24-openssl-static-1.0.2h-14.jbcs.el6.ppc64.rpm	SHA-256: 85e1f7ada14358f1755d25225b8304df0f16d10ccae2f3ec39dfd1463db4f333
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el6.ppc64.rpm	SHA-256: 2b9a757b90c1db157dd1d209ba5a7a7e3c3c8c263cc6a0254df6a428aa246371
mod_cluster-native-debuginfo-1.2.13-9.Final_redhat_2.ep6.el6.ppc64.rpm	SHA-256: a65dc8474bb9aa3a2585ee093b1c0945010a48cd737686d426719f62fef23bb9
mod_ldap-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 20755476cc1ac036ac3a8bbd29e6c91918ad8dd32554d4f5e1685b81a3c92b57
mod_ssl-2.2.26-57.ep6.el6.ppc64.rpm	SHA-256: 7fa3d1d23d9d2fae67198e0db2b3ae883e4938f5595655cd0be3dd8a437a4cd7
i386
httpd-2.2.26-57.ep6.el6.i386.rpm	SHA-256: 6ee90e59e6f39b91ff5c067302fa3a63d4360feb029363ede95f9383a201efb7
httpd-debuginfo-2.2.26-57.ep6.el6.i386.rpm	SHA-256: 8983e735773aab233e859e3c4988e080b75434153f41af5eb26ed36bb7c10ee1
httpd-devel-2.2.26-57.ep6.el6.i386.rpm	SHA-256: d0046f3e125f370e62dc74231a841c920e58b3957941d01170664ebda05234f0
httpd-manual-2.2.26-57.ep6.el6.i386.rpm	SHA-256: ed4321fccab310bd036c4d6eb4263506a47fd0e35dcc252e101c56c96e608b6a
httpd-tools-2.2.26-57.ep6.el6.i386.rpm	SHA-256: 54e9a3b939a70b351ec841650714c2f13decdfac10ed67b8a68f177f60e4ae9d
jbcs-httpd24-openssl-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: 0a775eed41df61fd31b8fa965a309aa7f64d0f73eb059f0592722217c8b60135
jbcs-httpd24-openssl-debuginfo-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: 3ac01d262dd6d15308365366f443569112f78ed623d1a0435bd62eb7359c5da6
jbcs-httpd24-openssl-devel-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: 961cf60add91c711141ce2048254207c7b338345d4414abb2924cf01a8181416
jbcs-httpd24-openssl-libs-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: 6462602c950da58c796389cdb60b182d00fc049addf28fec47eeb1b2dbc3f98c
jbcs-httpd24-openssl-perl-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: fdc87087cc2448468815b13c4811a02993ca610f90f20b64c27a3a2503dde313
jbcs-httpd24-openssl-static-1.0.2h-14.jbcs.el6.i686.rpm	SHA-256: 9e2d07e29baf645ea1ba01a8d9f29180c6809d485aa3d2e0f708f4044b03096c
mod_cluster-native-1.2.13-9.Final_redhat_2.ep6.el6.i386.rpm	SHA-256: bcf046462790a6ed1060eba67e08e14fc970311bb4817ad4ba32656b6c966bd2
mod_cluster-native-debuginfo-1.2.13-9.Final_redhat_2.ep6.el6.i386.rpm	SHA-256: 27959b9dd7c2a19381fb4313ffa7d4d1449acc0bc5e69e4c4c9d71dee5a1d157
mod_ldap-2.2.26-57.ep6.el6.i386.rpm	SHA-256: 4c88af9bd0a40f8d49d9c124a339db0da5667e8e002dbc17f2ce86dfceef4b06
mod_ssl-2.2.26-57.ep6.el6.i386.rpm	SHA-256: ce3d75d15d42648b5cc8594b44d906836ec4fedd2e0ca1048b580202afd5130c

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Red Hat Customer Portal Labs

Additional Tools

Red Hat Insights

Red Hat Product Security Center

Spectre & Meltdown Detector

Security Updates

Resources

Customer Portal Community

Customer Events

Stories