JBoss Enterprise Application Platform 6.4 Update 23 Release Notes
Note: Red Hat JBoss EAP 6 has reached the End of Maintenance and an Extended Life Subscription (ELS) is now required for continued support, see JBoss Enterprise Application Platform 6 (EAP 6) End of Maintenance FAQ for more details.
For more information see the following Red Hat Knowledgebase articles: Maintenance Release Changes in EAP 6.2+ and Updated Patch Management with EAP 6.2+
This update includes all fixes and changes from This content is not included.JBoss EAP 6.4 Update 22 / Release Notes
Download This content is not included.JBoss Enterprise Application Platform 6.4 Update 23
This update includes fixes for the following security related issues:
| ID | Component | Summary |
|---|---|---|
| CVE-2019-14885 | Security | jboss-cli: JBoss EAP: Vault system property security attribute value is revealed on CLI 'reload' command |
| CVE-2020-1938 | jbossas | jbossweb: tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability |
This update includes the following bug fixes or changes:
| ID | Component | Summary |
|---|---|---|
| This content is not included.1722951 | CDI/Weld | beans.xml schema validation should not require internet [details] |
| This content is not included.1811066 | CDI/Weld | WELD-2612 - Possible deadlock in conversation map cleanup |
| This content is not included.1837496 | EJB | EJB XA Tx issue EAP 7.x <-> EAP 6.4 - XidTransactionBeforeCompletionTask: don't throw an exception when subordinate transaction is not present |
| This content is not included.1740765 | HornetQ | Improving reading on Hornetq Page |
| This content is not included.1730102 | HornetQ | Compacting journal files may mix up data files orders. Causing data loss |
| This content is not included.1755126 | HornetQ | Hornetq Messsage doesn't make a full copy of its properties |
| This content is not included.1806709 | HornetQ | Make HornetQ UDP Clustering Client discovery resilient |
| This content is not included.1700841 | HornetQ | ARTEMIS-2299 Using redelivery-delay and LastValueQueues is not defined and leads to queue blockage |
| This content is not included.1782457 | JCA | JBJCA-1398 - Connection leak when there is an exception during getConnection for NoTransaction resource adapter [details] |
| This content is not included.1702809 | JDR | JDR does not close some files properly and can cause Too many open files |
| This content is not included.1828824 | JMX | REMJMX-166 - IllegalThreadStateException after idle jmx connection |
| This content is not included.1697284 | JMX | REMJMX-160 - Every JMXConnectorFactory#connect() creates a new ThreadGroup which is never reclaimed [details] |
| This content is not included.1772553 | JSF | JAVASERVERFACES-2171 - Use static initializer block in FactoryFinder - to fix thread safety issues |
Installation
Note: This update should only be applied to installer or zip-based installations.
Note: This update requires JBoss EAP 6.4 Update 19 be applied prior to applying it. See this article for more information.
To apply this update using the CLI on Unix-based systems, run the following command from JBOSS_HOME:
bin/jboss-cli.sh "patch apply path/to/jboss-eap-6.4.23-patch.zip"
To apply this update using the CLI on Windows-based systems, run the following command from JBOSS_HOME:
bin\jboss-cli.bat "patch apply path\to\jboss-eap-6.4.23-patch.zip"
These commands will apply the update to the installation that contains the CLI script. Other scenarios and use of the management console are covered in the This content is not included.JBoss EAP 6.4 Installation Guide
Deprecated Features
Note that the following are now deprecated and no longer exist in the EAP 7.3 Images:
- Hawkular
- MySQL JDBC Driver
- Postgresql JDBC Driver
- MongoDB JDBC Driver
RPMs
- Red Hat Enterprise Linux (RHEL) 5 RPMs will cease once RHEL 5's End of Extended Life Cycle Support (ELS) ends on November 30, 2020 see more details.