JBoss Enterprise Application Platform 8.1 Update 0.1 Release Notes
In order to better meet customer expectations, micro releases for JBoss EAP 8 have been discontinued and replaced with updates delivered on a repeating schedule.
Each new update will contain a number of bug fixes for customer reported issues and potentially a number of security fixes. We expect that the updates will substantially reduce the number of individual patches that we produce and that customers must manage to keep their installations up to date.
Download This content is not included.JBoss Enterprise Application Platform 8.1 Update 0.1
This update includes fixes for the following security related issues:
| ID | Component | Impact | Summary |
|---|---|---|---|
| CVE-2025-55163 | Server | Important | netty-codec-http2: Netty MadeYouReset HTTP/2 DDoS Vulnerability |
| CVE-2025-58056 | Server | Moderate | netty-codec-http2: Netty is vulnerable to request smuggling due to incorrect parsing of chunk extensions |
| CVE-2025-48913 | Server | Important | cxf: CXF JMS Code Execution Vulnerability [eap-8.0.z] |
This update includes the following bug fixes or changes:
| ID | Component | Summary |
|---|---|---|
| This content is not included.JBEAP-31065 | Web Services | CXF-9110 - Memory leak in DelayedCleanerImpl.queue when LoggingFeature is enabled |
| This content is not included.JBEAP-30854 | Web Services | can't deploy deployments using SOAP over JMS with remoting protocols |
Installation
Archive / zip / installer based installations
Note: This update zip should only be applied to installer or zip-based installations.
See the documentation: JBoss EAP 8.0 update methods
RPM installations
See the documentation: Updating an RPM installation
OpenShift Container installations
Update the containers to use the latest tag., to be current on OpenJDK and RHEL fixes.
Notes
- JBoss EAP 8.0 Update 4+ now supports OpenJDK 21 / Oracle JDK 21 / Adoptium JDK 21, see Supported Configurations.
- The EAP natives for s390x platform (IBM zSeries) are only supported in the OpenShift environment on IBM zSeries, i.e bare metal installations on IBM zSeries are not supported.
- Some JBoss EAP image templates depend on other products that may not have a s390x build, see here for more details
- Red Hat Insights is available for JBoss EAP 8 and accessible on the This content is not included.Red Hat Hybrid Cloud Console, see more details.
- Deprecated in Red Hat Enterprise Application Platform (EAP) 8