JBoss Enterprise Application Platform 6.4 Update 15 Release Notes
Important: This update is not the latest cumulative patch, it is recommended to apply the latest update, see these links for the latest:
In order to better meet customer expectations, micro releases for JBoss EAP 6 have been discontinued and replaced with updates delivered on a repeating schedule, targeting a new release every 6 weeks.
Each new update will contain a number of bug fixes for customer reported issues and potentially a number of security fixes. We expect that the updates will substantially reduce the number of individual patches that we produce and that customers must manage to keep their installations up to date.
For more information see the following Red Hat Knowledgebase articles: Maintenance Release Changes in EAP 6.2+ and Updated Patch Management with EAP 6.2+
This update includes all fixes and changes from This content is not included.JBoss EAP 6.4 Update 14 / Release Notes
This update includes fixes for the following security related issues:
| ID | Component | Summary |
|---|---|---|
| CVE-2016-9606 | RESTEasy | Yaml unmarshalling vulnerable to RCE |
This update includes the following bug fixes or changes:
| ID | Component | Summary |
|---|---|---|
| This content is not included.1195138 | Application Client | Wrong order of elements in appclient.xml |
| This content is not included.1444620 | CLI | CLI returns always "0" if CLI is started with "cmd /c " on Windows |
| This content is not included.1440062 | CLI | Duplicate argument when using CLI |
| This content is not included.1426985 | CLI | JBoss-CLI "deploy -l" always returns exit code 1 even when it succeeds [details] |
| This content is not included.1417679 | CLI | Failed CLI batch command with "deploy --force" for replace deployment [details] |
| This content is not included.1440757 | CLI | jboss-cli.bat script is unable to start on Windows, if JBOSS_HOME folder contains '!' character |
| This content is not included.1238263 | CLI | jboss-cli client prints "Accept certificate? [N]o, [T]emporarily, [P]ermenantly" indefinitely |
| This content is not included.1195132 | CLI | Wrong order of elements in jboss-cli.xml |
| This content is not included.1430921 | Clustering | Set classloader when starting JGroups channel [details] |
| This content is not included.1410583 | Domain Management | WFCORE-2182 - RuntimeVaultReader should not throw SecurityException |
| This content is not included.1417653 | Domain Management | NullPointerException on missing user-agent in the request |
| This content is not included.1434597 | Domain Management | Full-replace rollback is failing with java.util.NoSuchElementException: No child 'name' exists: java.util.NoSuchElementException: No child > 'name' exists [details] |
| This content is not included.1406562 | Domain Management | NPE thrown during application redeployment, slaves taken offline |
| This content is not included.1398692 | EJB | Reconnect handlers leaking channels, need to unregister the ejb receiver - Part II |
| This content is not included.1427268 | Hibernate | HHH-11516 - Level two cache may not be enabled when using @Cacheable without/instead of @Cache [details] |
| This content is not included.1334586 | HornetQ | Application EAR deployment fails on a collocated live-backup configuration |
| This content is not included.1428338 | HornetQ | HornetQ Invalid Type exception handling improvements [details] |
| This content is not included.1276052 | JCA | account for additional DB2 FATAL connection errors |
| This content is not included.1410211 | PicketLink | PicketLink SP does not pass RelayState to IDP |
| This content is not included.1433517 | PicketLink | SAML LogoutResponse includes invalid Responder status This content is not included.[details] |
| This content is not included.1337847 | PicketLink | Misleading error message in the log about expired assertion in case of clock skew |
| This content is not included.1417964 | RESTEasy | RESTEASY-992 - Client gives out of memory error, if consuming a huge multipart form via POST [details] |
| This content is not included.1227144 | RPMs | standalone.conf is marked %config not %config(noreplace) in RPM metadata |
| This content is not included.1401399 | Remoting | Race condition on creating Xnio instance [details] |
| This content is not included.1436867 | Remoting | xnio - Fix wrong remaining count |
| This content is not included.1436781 | Remoting | XNIO-261 - Use privileged action to construct service loaders |
| This content is not included.1426647 | Scripts and Commands | standalone.sh can hang on gc log back up moves [details] |
| This content is not included.1425754 | Scripts and Commands | Error while starting JBoss as service in domain mode using init scripts. |
| This content is not included.1212926 | Security | jboss-as-security_1_2.xsd does not match the parser implementation |
| This content is not included.1183165 | Server | Schema validation errors against jboss-service_7_0.xsd |
| This content is not included.1219273 | Server | Incorrectly scaled timeout value passed to org.jboss.as.controller.ControllerLogger method timeoutCompletingOperation |
| This content is not included.1410869 | Web | AsyncContext.complete() blocks sometimes as long as the DEFAULT_CONNECTION_TIMEOUT [details] |
| This content is not included.1426471 | Web | deadlock in org.apache.tomcat.websocket.server.WsRemoteEndpointImplServer.onWritePossible [details] |
| This content is not included.1426264 | Web | o.a.c.http11.InternalNioOutputBuffer.sendAck may improperly loop in the event of an exception [details] |
| This content is not included.1365939 | jbossas | Required 'name' attribute not present in the XML Schema for valve [details] |
Note: This update should only be applied to installer or zip-based installations.
To apply this update using the CLI on Unix-based systems, run the following command from JBOSS_HOME:
bin/jboss-cli.sh "patch apply path/to/jboss-eap-6.4.15-patch.zip"
To apply this update using the CLI on Windows-based systems, run the following command from JBOSS_HOME:
bin\jboss-cli.bat "patch apply path\to\jboss-eap-6.4.15-patch.zip"
These commands will apply the update to the installation that contains the CLI script. Other scenarios and use of the management console are covered in the This content is not included.JBoss EAP 6.4 Installation Guide