Lucene search

K
redhatRedHatRHSA-2023:0888
HistoryFeb 21, 2023 - 3:39 p.m.

(RHSA-2023:0888) Moderate: Red Hat Integration Camel Extension For Quarkus 2.13.2-1 security update

2023-02-2115:39:59
access.redhat.com
11
red hat
integration
camel extension
quarkus
security update
haproxymessagedecoder
stack exhaustion
dos
postgresql jdbc
inputstream.

0.002 Low

EPSS

Percentile

51.7%

A security update for 2.13.2-1 is now available. The purpose of this text-only errata is to inform you about the security issues fixed.

Security Fix(es):

  • codec-haproxy: HAProxyMessageDecoder Stack Exhaustion DoS (CVE-2022-41881)

  • postgresql-jdbc: PreparedStatement.setText(int, InputStream) will create a temporary file if the InputStream is larger than 2k (CVE-2022-41946)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.