Red Hat Product Errata RHSA-2025:20052 - Security Advisory
Issued:
2025-11-10
Updated:
2025-11-10

RHSA-2025:20052 - Security Advisory

Synopsis

Important: Red Hat JBoss Enterprise Application Platform 7.4.23 security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.

This asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.4.

Security Fix(es):

  • com.google.protobuf/protobuf-java: StackOverflow vulnerability in Protocol Buffers (CVE-2024-7254)

A Red Hat Security Bulletin which addresses further details about this flaw is available in the References section.

For more details about the security issue(s), including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE page(s) listed in the References section.

Solution

Before applying the update, make sure all previously released errata relevant to your system have been applied. Also, back up your existing installation, including all applications, configuration files, databases and database settings. For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258

Affected Products

  • JBoss Enterprise Application Platform 7.4 ELS 7.4 for RHEL 9 x86_64
  • JBoss Enterprise Application Platform 7.4 ELS 7.4 for RHEL 8 x86_64
  • JBoss Enterprise Application Platform 7.4 ELS 7.4 for RHEL 7 x86_64

Fixes

  • BZ - 2313454 - CVE-2024-7254 protobuf: StackOverflow vulnerability in Protocol Buffers

JBoss Enterprise Application Platform 7.4 ELS 7.4 for RHEL 9

SRPM
eap7-protostream-4.3.7-1.Final_redhat_00001.1.el9eap.src.rpm SHA-256: cf82f492ca44f7c3dd806bdeadc2252021e5378e804f1435fd23b3aaa133fb90
eap7-wildfly-7.4.23-5.GA_redhat_00004.1.el9eap.src.rpm SHA-256: fad662fb7b636374a689e0d6d67edd1906a36b1643384b77f749f3960775af23
x86_64
eap7-protostream-4.3.7-1.Final_redhat_00001.1.el9eap.noarch.rpm SHA-256: b4b3490d125cb429bf8af8c5241c77559e3cb11d3251a1f5993ddde1a14213bd
eap7-wildfly-7.4.23-5.GA_redhat_00004.1.el9eap.noarch.rpm SHA-256: b4e41f4e999a06200e9d03d06d23d8f5aa4ade018e046b7510369d85b3b5bd7d
eap7-wildfly-java-jdk11-7.4.23-5.GA_redhat_00004.1.el9eap.noarch.rpm SHA-256: 357f5e6219a2dc8b3b872a37bc3afc5666440cc1cb9f1c9409582f008c83834b
eap7-wildfly-java-jdk17-7.4.23-5.GA_redhat_00004.1.el9eap.noarch.rpm SHA-256: 371780aac171192fd5cf4fc6849277da9eacd868dd7bb37bdc628e6e3575a2c0
eap7-wildfly-java-jdk8-7.4.23-5.GA_redhat_00004.1.el9eap.noarch.rpm SHA-256: 5ac05664154e128bb7cbcd29d2d6883004e2736eab0405e5bd062149c23c612e
eap7-wildfly-javadocs-7.4.23-5.GA_redhat_00004.1.el9eap.noarch.rpm SHA-256: 7824f43961edbeb73d3d3eddc8979af36946c1bc98c0479f7ad710206749db16
eap7-wildfly-modules-7.4.23-5.GA_redhat_00004.1.el9eap.noarch.rpm SHA-256: 99235b91d934b3a4d08041b9a9ccc08dbac195f5678107358ec6726b7472d677

JBoss Enterprise Application Platform 7.4 ELS 7.4 for RHEL 8

SRPM
eap7-protostream-4.3.7-1.Final_redhat_00001.1.el8eap.src.rpm SHA-256: 67e4129e7a555cb6e3288a47904b78c45254305d5daa04c96472def611d3a899
eap7-wildfly-7.4.23-5.GA_redhat_00004.1.el8eap.src.rpm SHA-256: fa94adbc2128da244377e20b1c6890d968dad4abd3e0ba2ae5189f3a34fde19e
x86_64
eap7-protostream-4.3.7-1.Final_redhat_00001.1.el8eap.noarch.rpm SHA-256: 50b7e45238b7eb3d40be356a230ea0b3ea5558dea3fd04d6f80ce5526180f7cf
eap7-wildfly-7.4.23-5.GA_redhat_00004.1.el8eap.noarch.rpm SHA-256: 70495aabe3b78267427308af9f5f874a97674f9df5507f3a8efb86bbf9ffcd11
eap7-wildfly-java-jdk11-7.4.23-5.GA_redhat_00004.1.el8eap.noarch.rpm SHA-256: 8fc2558339fbf343eb3525cbc0f2df7f3b23e6e3a1e287cdb00f3ffd7c2a1a92
eap7-wildfly-java-jdk17-7.4.23-5.GA_redhat_00004.1.el8eap.noarch.rpm SHA-256: 6d7dd6b5069b0480c38a5f35a314a5be460ac8940a3db714fa353ebbf445e618
eap7-wildfly-java-jdk8-7.4.23-5.GA_redhat_00004.1.el8eap.noarch.rpm SHA-256: ed61ee6afc2ad43cd65604cc5c9d19638e687112aab7b46dca38f68f8df51975
eap7-wildfly-javadocs-7.4.23-5.GA_redhat_00004.1.el8eap.noarch.rpm SHA-256: 85c0ccc91b89cf29e01fd2bd886a70cad382eafebfe6791dd0ac3720f3a1a4b4
eap7-wildfly-modules-7.4.23-5.GA_redhat_00004.1.el8eap.noarch.rpm SHA-256: 548b987e8388ebf35e1d55aa76a5e5881119188697c85907a704215d2d5ab03a

JBoss Enterprise Application Platform 7.4 ELS 7.4 for RHEL 7

SRPM
eap7-protostream-4.3.7-1.Final_redhat_00001.1.el7eap.src.rpm SHA-256: d597a9c053fc1fe3fe4b6f56dff2dda4e8da7431863d84d177cd53acbace0c8d
eap7-wildfly-7.4.23-5.GA_redhat_00004.1.el7eap.src.rpm SHA-256: 903c7eba885985ae7226fe27fc9695ca00a0d8d9783e9daabfbf71e82bcfbe13
x86_64
eap7-protostream-4.3.7-1.Final_redhat_00001.1.el7eap.noarch.rpm SHA-256: d2494c83f4db2e7fb4e68f6433468892efb1663d68dc0dd3c62f917736052f6d
eap7-wildfly-7.4.23-5.GA_redhat_00004.1.el7eap.noarch.rpm SHA-256: 778b6b4330a531c59624901b981f6eb6380ef237a5026e40735d02116dd7294c
eap7-wildfly-java-jdk11-7.4.23-5.GA_redhat_00004.1.el7eap.noarch.rpm SHA-256: ba9113d28499ff023ffaa8971f152ab3db056296e22c44ab970365d32e31cc2d
eap7-wildfly-java-jdk8-7.4.23-5.GA_redhat_00004.1.el7eap.noarch.rpm SHA-256: 0ff962a5f4c897cd12a89fbaa78945122951ef1bf438a0153ca62c13d6544f4f
eap7-wildfly-javadocs-7.4.23-5.GA_redhat_00004.1.el7eap.noarch.rpm SHA-256: 40ab77d2c079825f4f1b49a932ea560469fb3e388a46bd0d2cc1c36d686e1f34
eap7-wildfly-modules-7.4.23-5.GA_redhat_00004.1.el7eap.noarch.rpm SHA-256: c075822ccfa8563e912494c406f151e95d24ff2804c7ed81fccb583f784125c2

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.