Uploaded image for project: 'JBoss Enterprise Application Platform 4 and 5'
  1. JBoss Enterprise Application Platform 4 and 5
  2. JBPAPP-3845

JBWEB-163: CVE-2009-3555

    XMLWordPrintable

Details

    • Task
    • Resolution: Done
    • Major
    • EAP 5.0.1.CR1
    • None
    • Web
    • None
    • Release Notes
    • Hide
      SHORT DESCRIPTION:
              Provide fix for JBWEB-163.
      LONG DESCRIPTION:
              Patch for CVE-2009-3555.
      MANUAL INSTALL INSTRUCTIONS:
              Replace the existing %JBOSS_HOME%/server/%JBOSSCONF%/jbossweb.sar/jbossweb.jar with the new jbossweb.jar
      COMPATIBILITY:
             5.0.0.GA
      SUPERSEDES:
              N/A
      CREATOR:
              Mike Millson
      DATE:
              5-March-2010
      Show
      SHORT DESCRIPTION:         Provide fix for JBWEB-163. LONG DESCRIPTION:         Patch for CVE-2009-3555. MANUAL INSTALL INSTRUCTIONS:         Replace the existing %JBOSS_HOME%/server/%JBOSSCONF%/jbossweb.sar/jbossweb.jar with the new jbossweb.jar COMPATIBILITY:        5.0.0.GA SUPERSEDES:         N/A CREATOR:         Mike Millson DATE:         5-March-2010

    Description

      CVE-2009-3555 TLS: MITM attacks via session renegotiation

      Attachments

        Activity

          People

            rhn-support-mmillson Michael Millson
            rhn-support-mmillson Michael Millson
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: