Lucene search

K
redhatRedHatRHSA-2024:3061
HistoryMay 22, 2024 - 6:35 a.m.

(RHSA-2024:3061) Moderate: pki-core:10.6 and pki-deps:10.6 security update

2024-05-2206:35:29
access.redhat.com
8
rhsa-2024
pki-core
pki-deps
security update
jackson-databind
denial of service
cve-2020-36518
red hat certificate system
cvss score
enterprise linux 8.10
release notes

7.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.0%

The Public Key Infrastructure (PKI) Core contains fundamental packages required by Red Hat Certificate System.

Security Fix(es):

  • jackson-databind: denial of service via a large depth of nested objects (CVE-2020-36518)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.10 Release Notes linked from the References section.