Nixpkgs security tracker

Untriaged

Permalink CVE-2010-0737

created 2 months ago Activity log

Created suggestion 2 months ago

A missing permission check was found in The CLI in …

A missing permission check was found in The CLI in JBoss Operations Network before 2.3.1 does not properly check permissions, which allows JBoss ON users to perform management tasks and configuration changes with the privileges of the administrator user.

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0737 x_transferredx_refsource_MISC

Affected products

JBoss

==2.3.1

Matching in nixpkgs

pkgs.jboss

Open Source J2EE application server

nixos-unstable 7.1.1.Final
- nixpkgs-unstable 7.1.1.Final
- nixos-unstable-small 7.1.1.Final
nixos-25.11 7.1.1.Final
- nixos-25.11-small 7.1.1.Final
- nixpkgs-25.11-darwin 7.1.1.Final

pkgs.jboss_mysql_jdbc

MySQL Connector/J

nixos-unstable 9.6.0
- nixpkgs-unstable 9.6.0
- nixos-unstable-small 9.6.0
nixos-25.11 9.4.0
- nixos-25.11-small 9.4.0
- nixpkgs-25.11-darwin 9.4.0

Package maintainers

@svanderburg Sander van der Burg <s.vanderburg@tudelft.nl>

Untriaged

Permalink CVE-2012-2312

created 2 months ago Activity log

Created suggestion 2 months ago

An Elevated Privileges issue exists in JBoss AS 7 Community …

An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security context from the process last used, which lets a local user obtain elevated privileges.

References

https://security-tracker.debian.org/tracker/CVE-2012-2312 x_transferredx_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-2312 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2012-2312 x_transferredx_refsource_MISC

Affected products

JBoss

==AS 7 Community Release

Matching in nixpkgs

pkgs.jboss

Open Source J2EE application server

nixos-unstable 7.1.1.Final
- nixpkgs-unstable 7.1.1.Final
- nixos-unstable-small 7.1.1.Final
nixos-25.11 7.1.1.Final
- nixos-25.11-small 7.1.1.Final
- nixpkgs-25.11-darwin 7.1.1.Final

pkgs.jboss_mysql_jdbc

MySQL Connector/J

nixos-unstable 9.6.0
- nixpkgs-unstable 9.6.0
- nixos-unstable-small 9.6.0
nixos-25.11 9.4.0
- nixos-25.11-small 9.4.0
- nixpkgs-25.11-darwin 9.4.0

Package maintainers

@svanderburg Sander van der Burg <s.vanderburg@tudelft.nl>

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.jboss

pkgs.jboss_mysql_jdbc

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.jboss

pkgs.jboss_mysql_jdbc

Package maintainers