Lucene search

K
redhatRedHatRHSA-2024:0722
HistoryFeb 12, 2024 - 3:22 p.m.

(RHSA-2024:0722) Important: Red Hat build of Quarkus 3.2.10 release and security update

2024-02-1215:22:24
access.redhat.com
25
red hat quarkus
3.2.10
security update
bug fixes
enhancements
cve-2023-22102
mysql-connector-java
cve-2023-48795
org.apache.sshd
cve-2023-4043
org.eclipse.parsson

7.3 High

AI Score

Confidence

Low

0.962 High

EPSS

Percentile

99.5%

This release of Red Hat build of Quarkus 3.2.10 includes security updates,
bug fixes, and enhancements. For more information, see the release notes page
listed in the References section.

Security Fix(es):

  • CVE-2023-22102 mysql/mysql-connector-java: Connector/J unspecified vulnerability (CPU October 2023) [quarkus-3.2]

  • CVE-2023-48795 org.apache.sshd/sshd-core: ssh: Prefix truncation attack on Binary Packet Protocol (BPP) [quarkus-3.2]

  • CVE-2023-4043 org.eclipse.parsson/parsson: Denial of Service due to large number parsing [quarkus-3.2]