[keycloak-dev] Is CVE-2019-3868 affecting regular Keycloak distributions?
Stian Thorgersen
sthorger at redhat.com
Thu Apr 25 07:22:56 EDT 2019
Yes, this is fixed in 6.0.1
On Thu, 25 Apr 2019 at 08:21, Lars Wilhelmsen <Lars.Wilhelmsen at thales.no>
wrote:
> Hi,
>
> I'm guessing this is the commit that resolves the issue:
>
> https://github.com/keycloak/keycloak/commit/65326ce16af0901824ebd5635b1f6e9acbea1e66
>
> Regards,
>
> Lars Wilhelmsen
>
> -----Original Message-----
> From: keycloak-dev-bounces at lists.jboss.org <
> keycloak-dev-bounces at lists.jboss.org> On Behalf Of Michael Furman
> Sent: torsdag 25. april 2019 07:27
> To: keycloak-dev at lists.jboss.org
> Subject: [keycloak-dev] Is CVE-2019-3868 affecting regular Keycloak
> distributions?
>
> Hi,
>
> Is CVE-2019-3868 affecting regular Keycloak distributions?
>
> https://access.redhat.com/security/cve/cve-2019-3868
>
> if yes, when it will be fixed?
> Or maybe it is fixed already?
>
> Thank you in advance for your help,
>
> Best regards,
>
> Michael
>
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>
More information about the keycloak-dev
mailing list