RHSA-2019:4042

Description

Red Hat Security Advisory: Red Hat Single Sign-On 7.3.5 security update on RHEL 8

CVSS Metrics

• v3.0•CRITICAL•Score: 9.1CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected Systems

• redhat•rh-sso7-keycloak

  < 0:4.8.15-1.Final_redhat_00001.1.el8sso

• redhat•rh-sso7-keycloak-server

  < 0:4.8.15-1.Final_redhat_00001.1.el8sso

References (35)

• https://access.redhat.com/errata/RHSA-2019:4042
• https://access.redhat.com/security/updates/classification/#important
• https://access.redhat.com/documentation/en-us/red_hat_single_sign-on/7.3/
• https://bugzilla.redhat.com/show_bug.cgi?id=1730227
• https://bugzilla.redhat.com/show_bug.cgi?id=1735645
• https://bugzilla.redhat.com/show_bug.cgi?id=1735744
• https://bugzilla.redhat.com/show_bug.cgi?id=1735745
• https://bugzilla.redhat.com/show_bug.cgi?id=1751227
• https://bugzilla.redhat.com/show_bug.cgi?id=1752980
• https://issues.redhat.com/browse/KEYCLOAK-11817
• https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_4042.json
• https://access.redhat.com/security/cve/CVE-2019-9512
• https://www.cve.org/CVERecord?id=CVE-2019-9512
• https://nvd.nist.gov/vuln/detail/CVE-2019-9512
• https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md
• https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg
• https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA
• https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/
• https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html
• https://access.redhat.com/security/cve/CVE-2019-9514
• https://www.cve.org/CVERecord?id=CVE-2019-9514
• https://nvd.nist.gov/vuln/detail/CVE-2019-9514
• https://access.redhat.com/security/cve/CVE-2019-9515
• https://www.cve.org/CVERecord?id=CVE-2019-9515
• https://nvd.nist.gov/vuln/detail/CVE-2019-9515
• https://access.redhat.com/security/cve/CVE-2019-14837
• https://www.cve.org/CVERecord?id=CVE-2019-14837
• https://nvd.nist.gov/vuln/detail/CVE-2019-14837
• https://access.redhat.com/security/cve/CVE-2019-14838
• https://www.cve.org/CVERecord?id=CVE-2019-14838
• https://nvd.nist.gov/vuln/detail/CVE-2019-14838
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14838
• https://access.redhat.com/security/cve/CVE-2019-14843
• https://www.cve.org/CVERecord?id=CVE-2019-14843
• https://nvd.nist.gov/vuln/detail/CVE-2019-14843